New Class of DNS Attacks Imminent

Powerful DNS amplification can overwhelm even mainstream servers

February 4, 2009 - Don Jackson, director of threat intelligence at SecureWorks, warned that a new class of DNS attacks are imminent. These new attacks utilize a new technique to generate powerful amplified attack  that does not require recursion.

In this new technique, a request for the root name servers is sent by an attacker to an open resolver. This small request generates a large response, which is directed by the attacker to the intended victim. If the attacker has access to a botnet, he can generate enough traffic to overwhelm the victim. This technique is different from previous DNS amplification attacks in that it does not require that the open resolver perform recursion before sending the response to the victim.

Source: SC Magazine

About Secure64 Software Corporation
Secure64® is a software developer providing highly secure DNS and server applications with built-in denial-of-service protection features to help ensure your Internet-dependent business is always accessible. Based on the genuinely secure SourceT® microOS, Secure64 DNS Authority remains highly available during network attacks and is immune to compromise from rootkits and malware.