Hidden DNS resolver insecurity creates widespread website hijack risk

Hidden DNS (domain name system) resolvers enable email redirection and account takeover attacks, according to security experts.SEC Consult discusses in a technical blog post how to alter the DNS name resolution of these so-called closed DNS resolvers using a cache poisoning attack variation (PDF). SEC Consult’s previous study shown how an attacker may take over user accounts of online apps by altering DNS name resolution. Many hosting companies and other internet service providers (ISPs) employ closed DNS resolvers to deliver services to their customers. Closed DNS resolvers, as the name implies, are found on private networks or intranets. Read More…