Researchers Discover Major Vulnerability in DNS-as-a-Service Provider Platforms

An attacker could obtain sensitive internal network information from thousands of organizations merely by taking the simple step of registering as their DNS service provider's nameserver: and yes, a security hole lets you do that unchecked in some cloud services. The Dark Reading News Desk interviews researchers who discovered the flaw.

The Dark Reading News Desk spoke with Shir Tamari, head of research at, and Ami Luttwak, co-founder and chief technology officer at, about a novel class of DNS vulnerabilities they presented at this year's Black Hat USA.