Slashdot Mirror

← Back to Stories (view on slashdot.org)

DNS Poisoning Hits One of China's Biggest ISPs

Posted by timothy on from the when-bad-childhoods-attack dept.

Support Code writes "ZDNet's Zero Day blog is reporting that a DNS server of one of China's largest ISPs has been poisoned to redirect typos to a malicious site rigged with drive-by exploits. The DNS poisoning attacks are affecting customers of China Netcom (CNC) and are using a malicious iFrame to launch exploits for known vulnerabilities in RealNetworks' RealPlayer, Adobe Flash Player and Microsoft Snapshot Viewer. In this interview with CNet, Dan Kaminsky confirms that attacks are definitely going on in the field."

8 of 86 comments (clear)

  1. Re:Frosty Post!!1 by Tubal-Cain · · Score: 1, Funny

    I'd like to buy a vowel. A.

  2. It's <iframe> by Anonymous Coward · · Score: 5, Funny

    is property of html, not Apple Inc.

  3. Real Player exploits? by dohzer · · Score: 2, Funny

    It's a good thing nobody uses Real Player these days, isn't it!

  4. Since when by narcberry · · Score: 5, Funny

    Since when do I have to input my SSN to post to slashdot?

    --
    Modding me -1 troll doesn't make me wrong.
  5. And what is M$ doing? by BhaKi · · Score: 2, Funny

    It's busy trying to paint a picture that the whole problem is only with BIND, not with DNS protocol and in particular not with M$ DNS.

    --
    The largest prime factor of my UID is 263267.
  6. Re:Cyberparanoia by z0idberg · · Score: 5, Funny

    lol

    Can we check the IP origin of that last post please?

    *ring*ring*
    Badguy1: "Hello"
    Badguy2: "Hi its me, you ready to do this thing tonight?"
    Badguy1: "sure, dont forget to bring the stuff"
    *click*
    Badguy2: "hey did you just hear a click on the line?"
    Badguy1: "yeah! - do you think we are being tapped by the NSA?"
    Anonymous Coward: "No its not our style"
    Badguy1: "OK"
    Badguy2: "OK"

  7. Olympic DNS poisoning by syousef · · Score: 2, Funny

    Someone's decided to make DNS poisoning an Olympic sport. Obviously the only place to do it at the moment is China.

    I've got images in my head of a broken toothed Chinese geek running around Beijing with an EEE PC and a Linksys wireless router hooked to a 12V SLA battery, lights a-blinking, instead of the Olympic torch. Thank goodness the Olympics are about to end.

    --
    These posts express my own personal views, not those of my employer
  8. iDon't Like It by OldMiner · · Score: 2, Funny

    "iFrame"? Lower-case i, uppercase next letter? How odd. It's "inline frame", normally all caps ('IFRAME') or all lower-case ('iframe'). "iFrame" makes it sound like some new Apple-branded house support structure with built-in Internet-something.

    --
    You like splinters in your crotch? -Jon Caldara