Hackaday

This Week In Security: Zimbra, DNS Poisoning, And Perfctl

Up first this week is a warning for the few of us still brave enough to host our own email servers. If you’re running Zimbra, it’s time to update, because CVE-2024-45519 is now being exploited in the ...
Dark Reading

China's Evasive Panda Attacks ISP to Send Malicious Software Updates

Researchers have found that a China-linked advanced persistent threat (APT) group compromised an Internet service provider (ISP) to exploit software vendor update mechanisms using DNS poisoning. The ...
Infosecurity-magazine.com

APT Group StormBamboo Attacks ISP Customers Via DNS Poisoning

Security researchers have uncovered a sophisticated supply chain attack campaign stemming from the compromise of an unnamed ISP. Volexity said the China-aligned StormBamboo (aka Evasive Panda, ...
TechSpot

Hackers exploited an ISP to launch sophisticated DNS poisoning attack against customers

In brief: Last year, Volexity detected and responded to an incident involving systems infected with malware linked to the Chinese hacking group StormBamboo. Initially, suspicions pointed to a ...
Computerworld

How DNS cache poisoning works

There has been a long history of attacks on the Domain Name System ranging from brute-force denial-of-service attacks to targeted attacks requiring specialized software. In July 2008 a new DNS ...
SDxCentral

NS1 Adds Security Capabilities, Takes on ‘DNS Cache Poisoning’ Attacks

NS1, a domain name system (DNS) and traffic management provider, is taking on “DNS cache poisoning” attacks with new DNS Security Extensions (DNSSEC) capabilities built into its platform. DNS ...
Ars Technica

Topic: DNS poisoning

Ars Technica has been separating the signal from the noise for over 25 years. With our unique combination of technical savvy and wide-ranging interest in the technological arts and sciences, Ars is ...