Dark Reading is part of the Informa Tech Division of Informa PLC
This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.
|
Feds Shift Gears & Mandate DNSSEC for All Agencies
US government takes a harder line on securing DNS infrastructure, but DNSSEC still hotly debated
Microsoft Offers Details on Privacy Features in IE8
New browser will allow user to better control access to surfing history, cookies
Hack Lets Researchers Silently Eavesdrop on IP Networks
New twist on an old BGP routing vulnerability could change the face of data theft, researchers say
The Seven Deadliest Social Networking Hacks
Think you know who your real online friends are? You could be just a few hops away from a cybercriminal in today's social networks
User Buys Millions of Bank Records (& a PC) on eBay
Used computer reveals sensitive customer data that should have been wiped clean, eBay buyer says
Best Western Denies Report of Massive Data Breach
Scottish newspaper says flaw exposed personal records of 8M hotel chain customers since 2007; Best Western says report is 'grossly unsubstantiated'
Life Insurer Takes New Approach to Two-Factor Authentication
Cryptocard technology helps Kansas City Life get the handle on a thorny access problem
ID Theft Ringleader Gets Three Days in Jail
Man convicted of leading Canada's largest identity theft conspiracy is virtually sentenced to time served
Princeton Review Exposes Data on More Than 100,000 Students
Website configuration error left data accessible for seven weeks
Attacks Continue on Retail Stores, Restaurants
Criminals exploit wireless vulnerabilities, social engineering to collect large volumes of customer data
Spear Phishing Attack Unleashes 1.5M Spam Messages
New Zealand university is exploited after convincing ruse fools four staffers
'Surf Jacking' Threatens Secure Browser Sessions
Researcher launches proof of concept to show vulnerability in HTTPS
Stolen Wells Fargo Access Codes Threaten 7,000
Thieves may have used credit reporting system to steal personal data
LinkedIn Hack Demonstrates Ease of Impersonation
Researchers channel Marcus Ranum on popular social network, duping security icon's friends, family, and colleagues
Researchers: There's Gold in Them Thar Hacks
Black Hat presentation shows some simple methods hackers have used to get rich or die trying
'Bringing Sexy Back' to Hacking
DefCon session will feature iPhones running WiFi scans and sophisticated spear-phishing tricks
Kaminsky: DNS Vulnerability Will Affect Email, Internal Systems, Too
If you think the now-infamous flaw is limited to browsers and the Web, think again, pioneer researcher says
Malicious Botnet Stole Bank, Credit Union Credentials
New report says the 50 GB of data stolen were only one fourth of the data harvested
Feds Arrest Hackers of TJX, Other Retailers in Huge Conspiracy Bust
Eleven perpetrators held responsible for online theft and sale of more than 40 million credit and debit cards
|
Everything You Need to Know About DNS AttacksIt's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask.
Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted.
Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Incident Readiness and Building Response Playbook
In this special report, learn the Xs and Os of any good security incident readiness and response playbook.
Tweet This
1 Comments
