Slashdot Mirror

← Back to Stories (view on slashdot.org)

DNS Poisoning Hits One of China's Biggest ISPs

Posted by timothy on from the when-bad-childhoods-attack dept.

Support Code writes "ZDNet's Zero Day blog is reporting that a DNS server of one of China's largest ISPs has been poisoned to redirect typos to a malicious site rigged with drive-by exploits. The DNS poisoning attacks are affecting customers of China Netcom (CNC) and are using a malicious iFrame to launch exploits for known vulnerabilities in RealNetworks' RealPlayer, Adobe Flash Player and Microsoft Snapshot Viewer. In this interview with CNet, Dan Kaminsky confirms that attacks are definitely going on in the field."

5 of 86 comments (clear)

  1. Re:It's by i.of.the.storm · · Score: 2, Insightful

    Haha, I guess it's kind of become reflex now to capitalize anything coming after an i.

    --
    All your base are belong to Wii.
  2. Re:As a Chinese Internet user... by gzipped_tar · · Score: 5, Insightful

    This is a very good question. Frankly, I don't know. As I have said, I never trust OpenDNS out of security reasons. I use it for my desktop browsing, not for anything worthy enough to be protected. But I know from my own experience that some Chinese ISPs are seriously incompetent in managing security risks. I have seen some of their mistakes in securing their service so that I wouldn't trust them again. OTOH I know I have to buy their services to get online and put these rants here and that sound like a paradox. Maybe it is. Finally we have to trust somebody else. That's how we make our lives. I just chose to deal with one who has *already* made a bad reputation as little as possible.

    --
    Colorless green Cthulhu waits dreaming furiously.
  3. Re:As a Chinese Internet user... by Anonymous Coward · · Score: 1, Insightful

    They redirect www.google.com, not google.com. If this were news to me and I went to check your claim, I'd find that you lied and your criticism would not just be ineffective but counterproductive. Apart from that you're right though. Nobody should use OpenDNS.

  4. Re:Just a warm-up by abirdman · · Score: 2, Insightful

    They're not trying "to do damage to China," they're trying to enlist more computers into botnets to spread email that sells fake \/iaGrA pills and penile enhancements to stupid people, and possibly to redirect unwitting browsers to ad-sponsored pages. It's motivated by Greed! It's the new (inter)nationalism, and unfortunately it knows no national boundaries.

    --
    Everything I've ever learned the hard way was based on a statistically invalid sample.
  5. Re:As a Chinese Internet user... by Anonymous Coward · · Score: 1, Insightful

    There are other public DNS servers, but since DNS is currently an unauthenticated protocol, it is all a matter of trust. If you care enough about DNS to avoid your ISP's servers, you should run your own recursive resolver. It's not hard.