I posted this a bit earlier, but I had jumped the gun. One of my "secret projects" became public today. On purpose.
This security update resolves two privately reported vulnerabilities in the Windows Domain Name System (DNS) that could allow spoofing. These vulnerabilities exist in both the DNS client and DNS server and could allow a remote attacker to redirect network traffic intended for systems on the Internet to the attacker’s own systems.
One of my guys just finished his press conference. I'll link a you tube video when it gets posted.
Bottom line: the internet is once again safe for spam and porn.
Update:
Dan is one of the folks on my pentest team and this has been pretty much his whole project since early March. Hear his podcast.
Also, read about "the largest synchronized security update in the history of the Internet"
These are the days when I'm glad I got out of my old job, even though I occasionlly miss it. Despite being "worldwide" we never pulled off anything of this magnitude, or made this much of a difference to so many customers. It was great, but I'm doing stuff now with real impact and it's very rewarding.
At least it is today. Ask me again next week and I might say something different.
Subscribe to:
Post Comments (Atom)
1 comment:
the internet is once again safe for spam and porn
And there was much rejoicing ...
Is your work related to 'CERT VU#800113 DNS Cache Poisoning Issue' found here? http://www.isc.org/index.pl?/sw/bind/forgery-resilience.php ?
When I read the linked MS security bulletin last night, my quick glance (I don't own any DNS servers) gave me the impression it was a flaw built by 'Microsoft'. It didn't say this, but (possibly) by not stating in the 'executive digest' what the problem is that's how I got the impression.
This morning I read the ISC bulletin and it claims it's a problem with the DNS protocol.
Post a Comment