Major Internet security flaw also affects email

DNS flaw allows hackers to intercept email

August 7, 2008 - Dan Kaminsky explained the DNS flaw at the 2008 Black Hat conference and revealed how this threat is greater than originally anticipated. In addition to redirecting consumers to nefarious sites, it can be used to intercept email messages. This is especially dangerous because most systems have a password retrieval system that sends a message to a customer who has requested a password reset. A hacker that has access to this email account can now peruse all messages, using them to their advantage.

The DNS flaw allows hackers to attach bad information to packets flowing in and out of DNS servers, thereby redirecting them to certain websites.

Source: Washington Post online

About Secure64 Software Corporation
Secure64® is a software developer providing highly secure DNS and server applications with built-in denial-of-service protection features to help ensure your Internet-dependent business is always accessible. Based on the genuinely secure SourceT® microOS, Secure64 DNS Authority remains highly available during network attacks and is immune to compromise from rootkits and malware.

DNS Security News Index