Hijacking DNS look up is not a new attack vector. Massive DNS hijacking instances were observed a decade ago. But DNSChanger botnet was known to be the largest in terms of number of computers affected. This article explains the DNS hijacking attack technique in general, possible measures to prevent it and a technique to detect… Continue reading While Waiting for the Next DNSChanger
Category: Network Security
Pitfalls of SSL Interception
Organizations that need to enforce Internet usage policies use gateway security products for fine-grained control. This kind of policies often include a list of web sites users are allowed to visit or not allowed to visit, ban a category of websites altogether, grant time-bound permissions etc. But uncategorized SSL-enabled sites pose potential threats that extend… Continue reading Pitfalls of SSL Interception