Back in late June, news of an interesting DNS hijack attack came out of the midst of the hot DEFI market, which highlighted the dangers of treating domain names and DNS as a utility, especially when operating in the crypto market. I mean $100’s of thousands in fake smart contract losses dangerous. Specifically, there were reports by a few providers such as Convex ... View Post
News
Facebook User Data Leaked
Social Engineering attacks are dangerous because attackers use unexpected psychological manipulation to trick victims into making security mistakes. Typically, these attacks use personal data and background information to gain trust and provide authority for their inquiries. They leverage this misguided trust to trick victims into providing access to accounts and ... View Post
Microsoft hoses own DNS causing global service outage
Yet another example of how nobody, regardless of size, resources nor expertise, is immune from DNS outages. Last week several Microsoft systems experienced a global outage when the company made a configuration error whilst migrating some legacy, infrastructure domains, to their own Azure platform. The errors had second-order effects within the Azure ecosystem ... View Post
A Deep Dive into the Mirai Botnet Attack
As we all know, on Friday Oct 21, 2016 DNS provider Dynect was severely impacted by a big DDoS attack which has since been attributed to the Mirai Botnet. (interesting to note that “Mirai” means “future” in Japanese). Briefly: The Mirai Botnet is constructed by commandeering network connected Internet of Things (IoT) devices such as remote cameras, or any other ... View Post