DDoS Attack on Prolexic Targets DNS

Pharmamaster Hacks Away at Blue Security

May 10, 2006 - Prolexic, a company that provides website security services, is fighting a massive Distributed Denial of Service (DDoS) attack from hackers who are upset with the anti-spam software sold by Blue Security. Prolexic was hired by Blue Security to stop cyber attacks by managing all unusually heavy traffic loads.

The determined hacker, identified as pharmamaster, flanked the security company's defenses and attacked UltraDNS, Prolexic's main Domain Name Service (DNS). UltraDNS could not stop the attack and many of its DNS servers were knocked down. When UltraDNS failed, Prolexic, Blue Security, and many other companies went offline.

The hackers used a new kind of DDoS attack, called a "reflected DNS attack." To flood the DNS, the cyber criminal use poorly configured DNS servers to send compromised server requests to the target. The server that receives the gigantic traffic load cannot distinguish the difference between legitimate requests and the compromised requests. In the end, the DNS server becomes flooded with data and cannot respond.

Along with Prolexic, thousands of its customers were also down. Among these customers were banks and financial services. The DDoS attack that targeted Blue Security, UltraDNS, and Prolexic crippled a large section of the Internet damaging businesses in the process. This attack highlights many vulnerabilities in DNS and the interconnectedness of many different business websites. In some respects, an attack against one company is an attack against all.

Source: OneKIT

About Secure64 Software Corporation
Secure64® is a software developer providing highly secure DNS and server applications with built-in denial-of-service protection features to help ensure your Internet-dependent business is always accessible. Based on the genuinely secure SourceT® microOS, Secure64 DNS remains highly available during network attacks and is immune to compromise from rootkits and malware.

DNS Security News Index