Corrupt DNS Cache is a Serious ProblemDavid Holman, Director of First Cyber Security, issued a warning that the DNS cache could be used to trick users into unwittingly divulge their personal information online as well as become infected with malware or encounter e-mail problems, as reported by SCMagazine on October 8, 2008. David Holman also tried to explain that all internet users attempt to access domain name lookup tables that transform a domain name into its numeric IP address. But due to DNS cache poisoning, lookup tables become corrupt and the IP addresses of bogus and malware-laden Web pages are placed to substitute the actual addresses of frequently visited sites. Holman further stated that even if a user enters a correct URL, he is redirected to the malware-laden page created by cyber criminals rather than the actual page. Subsequently, any detail the user types in such as his user IDs and passwords could be captured by the third party. Then, this detail is used for online fraud including identity theft and phishing. Security specialists believed that it wouldn't be easy to solve this security problem, as the conventional IT security software find it hard to safeguard users against it effectively. The specialists also reminded that the DNS flaw was first discovered in July 2008, and CERT (Computer Emergency Readiness Team) had issued a related security advisory. Also, the poisoning of DNS cache is extremely grave and it could compromise key commercial internet services like Web-based applications or e-mail. Moreover, the DNS cache poisoning keeps the user ignorant of his/her computer's state of compromise; thus, exposes the system to fraud. Since DNS touches almost every online transaction, compromise could leave an enormous impact on all e-commerce as well as other Internet services. Hence, the security specialists advise users to select the server program that enables "secured" transactions over the net, or https. And while conducting online banking or revealing personal information, computer users should perform it from secured locations such as home. Also, they should use their office PC for these purposes only if there is an in-built trust on the administrator. » SPAMfighter News - 13-10-2008
Share and tell your friends!
| All SPAMfighter products offer a free trial!
SPAMfighter is a free spam filter for Outlook, Outlook Express,Windows Mail, Windows Live Mail and Thunderbird.
Optimize your Slow PC for better performance. Try FREE scan now
SPAMfighter Exchange Module is a Spam filter for Exchange server - Free 30 days trial.
Remove Spyware with SPYWAREfighter - Free 30 days trial
Antivirus software for your Windows PC - Free 30 days trial | ||||||||||||||||||||||||||||
| <<< | >>> | ||||||||||||||||||||||||||||
SPAMfighter is
