Major DNS cache poisoning at Verisign/WorldNIC
From: Matthew F. Caldwell (mattc@guarded.net)Date: 03/19/02
- Previous message: Kyle R. Hofmann: "Re: Question about HTTP DDOS attacks."
- Next in thread: Brian McWilliams: "Re: Major DNS cache poisoning at Verisign/WorldNIC"
- Reply: Brian McWilliams: "Re: Major DNS cache poisoning at Verisign/WorldNIC"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 19 Mar 2002 14:18:56 -0500 From: "Matthew F. Caldwell" <mattc@guarded.net> To: <incidents@securityfocus.com>
Just to let everyone know, there has been some major DNS cache poisoning going on at Verisign apparently done by some Brazilians ("Web Pirates") for web site defacements. If your parking your DNS at worldnic.com (netsol/verisign) you might want to see if you site has been redirected to 64.225.154.175 (owned by Interland of Atlanta) using random DNS servers.
Don't you love UDP.
Matthew F. Caldwell, CISSP
Chief Security Officer
GuardedNet, Inc
----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com
- Previous message: Kyle R. Hofmann: "Re: Question about HTTP DDOS attacks."
- Next in thread: Brian McWilliams: "Re: Major DNS cache poisoning at Verisign/WorldNIC"
- Reply: Brian McWilliams: "Re: Major DNS cache poisoning at Verisign/WorldNIC"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
