New Side Channel Attacks Re-Enable Serious DNS Cache Poisoning Attacks

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,154
Content source
https://thehackernews.com/2021/11/new-side-channel-attacks-re-enable.html
Researchers have demonstrated yet another variant of the SAD DNS cache poisoning attack that leaves about 38% of the domain name resolvers vulnerable, enabling attackers to redirect traffic originally destined to legitimate websites to a server under their control.

"The attack allows an off-path attacker to inject a malicious DNS record into a DNS cache," University of California researchers Keyu Man, Xin'an Zhou, and Zhiyun Qian said. "SAD DNS attack allows an attacker to redirect any traffic (originally destined to a specific domain) to his own server and then become a man-in-the-middle (MITM) attacker, allowing eavesdropping and tampering of the communication."

The latest flaw affects Linux kernels as well as popular DNS software, including BIND, Unbound, and dnsmasq running on top of Linux, but not when run on other operating systems FreeBSD or Windows.
Click to expand...
thehackernews.com

New Side Channel Attacks Re-Enable Serious DNS Cache Poisoning Attacks

In another variation of the SAD DNS cache poisoning attack, researchers reveal previously overlooked "even stronger" side channels.
thehackernews.com thehackernews.com
 
  • Like
  • +Reputation
Reactions: Andy Ful, upnorth, oldschool and 5 others
The_King

The_King

Level 12
Verified
Top Poster
Well-known
Aug 2, 2020
542
One of the reasons I use DOH has well has DNSSEC.
DNSSEC.jpg

www.cloudflare.com

Cloudflare Browser Check

Secure DNS Transport using DoH (DNS over HTTPS) or DoT (DNS over TLS) and SNI with ECH
www.cloudflare.com www.cloudflare.com
 
  • Like
Reactions: oldschool, silversurfer, LASER_oneXM and 2 others
You must log in or register to reply here.

Similar threads

[correlate]
    • Like
    • Wow
MaginotDNS attacks exploit weak checks for DNS cache poisoning
Replies
0
Views
994
News Archive
[correlate]
[correlate]
silversurfer
    • +Reputation
    • Like
    • Wow
Researchers Uncover New GPU Side-Channel Vulnerability Leaking Sensitive Data
Replies
0
Views
1,386
News Archive
silversurfer
silversurfer
Gandalf_The_Grey
    • Like
    • +Reputation
    • Wow
Security News KeyTrap attack: Internet access disrupted with one DNS packet
Replies
0
Views
878
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top