A Flaw with DNSaaS Providers Exploited for Intelligence Gathering.


Cybercriminals were able to steal sensitive information from corporate networks because to a DNS vulnerability affecting popular DNSasaService (DNSaaS) providers.

A small portion of dynamic DNS traffic passing through managed DNS providers such as Amazon and Google could be intercepted by hackers. To take advantage of the weakness, attackers had to establish a domain and hijack a DNSaaS provider’s nameserver in order to intercept dynamic DNS traffic flowing over the targeted customer’s network.

Read More…