Unsecured DNSSEC Easily Weaponized, Researchers Warn

Datetime:2016-08-23 01:04:16         Topic: DDOS          Share        Original >>
Here to See The Original Article!!!

DNSSEC is not invincible. Researchers this week described how a DNSSEC-based flood attack could easily knock a website offline and allow for the insertion of malware or exfiltration of sensitive data. The intent of Domain Name System Security Extensions, or DNSSEC, is to bolster DNS through a series of complex digital signatures. But if it is not secured properly it can fall victim to cache poisoning and malicious redirection attacks, experts warn. Researchers at Neustar explained in a paper, �DNSSEC: How Savvy DDoS Attackers Are Using Our Defenses Against Us� on Tuesday how DNSSEC can be reflected and leveraged by �ANY� queries to carry out DDoS attacks.

Read this full article at ThreatPost

Only registered users can write comments.

Please login or register.

Powered by AkoComment!








New

Put your ads here, just $200 per month.