Twitter's inability to control its Domain Name System (DNS) IP addresses is a common problem among enterprises, according to experts, who said last week's incident highlights the need for better DNS security and tougher authentication processes with DNS registrars.
Attackers have focused on authoritative name servers – those that are configured to return answers to queries about specific domain names. Microsoft's domains have come under fire and several hackers were charged in May for hijacking Comcast.net in 2008 by contacting Network Solutions, the company's domain registrar and using credentials from a hacked Comcast email account.
DNS security risks were again highlighted last week when a hacking group, claiming to be the Iranian Cyber Army, used a stolen password to log into Twitter's DNS settings. The group changed the DNS records, redirecting the traffic to a web page for about an hour on Friday. Visitors to Twitter were redirected to a page displaying an image of a green flag and Arabic writing that announced that Twitter had "been hacked by the Iranian Cyber Army."
You can read the entire article here .
- Follow us on :
