. home.aspx



New DNS Attacks Make Use of DNSSEC More Critical Than Ever

February 25, 2019 / Wayne Rash

An insidious new series of cyber-attacks that redirect traffic intended for specific websites by changing their DNS records has resulted in the first emergency directive by the Cybersecurity and Infrastructure Security Agency. This directive was followed in February by an alert by ICANN (Internet Corporation for Assigned Names and Numbers) of a growing effort by state-sponsored attackers to compromise the Domain Name System through attacks on top-level domains. What this means to you is that the threat actor could change your organization’s DNS entry so that traffic to your internet addresses instead goes elsewhere. This redirection allows the bad actor to examine this traffic in detail, after which it may be copied before being sent back to your organization. According to researchers at FireEye, the domain hijacking is being carried out by attackers in Iran. While the focus of most of the attacks appears to be government and commercial interests in the Middle East, attacks elsew...