Unsecured DNSSEC Easily Weaponized, Researchers Warn

Datetime:2016-08-23 01:04:16          Topic: DDOS           Share

DNSSEC is not invincible. Researchers this week described how a DNSSEC-based flood attack could easily knock a website offline and allow for the insertion of malware or exfiltration of sensitive data. The intent of Domain Name System Security Extensions, or DNSSEC, is to bolster DNS through a series of complex digital signatures. But if it is not secured properly it can fall victim to cache poisoning and malicious redirection attacks, experts warn. Researchers at Neustar explained in a paper, �DNSSEC: How Savvy DDoS Attackers Are Using Our Defenses Against Us� on Tuesday how DNSSEC can be reflected and leveraged by �ANY� queries to carry out DDoS attacks.

Read this full article at ThreatPost

Only registered users can write comments.

Please login or register.

Powered by AkoComment!





About List