Neustar Research: DNSSEC Reflection Severe DDoS Risk
Neustar, Inc. (NYSE: NSR), a trusted, neutral provider of real-time information services, today published “DNSSEC: How Savvy DDoS Attackers Are Using Our Defenses Against Us a research report that details how Domain Name System Security Extensions (DNSSEC) can be subverted as an amplifier in Distributed-Denial-of-Service (DDoS) attacks. Neustar determined that on average, DNSSEC reflection can transform an 80-byte query into a 2,313-byte response, an amplification factor of nearly 30 times, which can easily cause a network service outage during a DDoS attack, resulting in lost revenue and data breaches.
“DNSSEC emerged as a tool to combat DNS hijacking, but unfortunately, hackers have realized that the complexity of these signatures makes them ideal for overwhelming networks in a DDoS attack,” said Joe Loveless, Director Product Marketing, Security Services, Neustar. “If DNSSEC is not properly secured, it can be exploited, weaponized and ultimately used to create massive DDoS attacks.”
DNSSEC was designed to provide integrity and authentication to DNS, which it accomplishes with complex digital signatures and key exchanges. As a result, when a DNS record is transferred to DNSSEC, an extraordinary amount of additional information is created. Additionally, when issuing the DNS command, “ANY,” the amplified response from DNSSEC is exponentially larger than a normal DNS reply.
Key findings and recommendations from “DNSSEC: How Savvy DDoS Attackers Are Using Our Defenses Against Us” include:
- DNSSEC Vulnerabilities Are Prolific – Neustar examined one industry with 1,349 domains and determined 1,084 of them (80 percent) could be maliciously repurposed as a DDoS attack amplifier (they were signed with DNSSEC and responded to the “ANY” command).
- The Average DNSSEC Amplification Factor is 28.9 – Neustar tested DNSSEC vulnerabilities with an 80-byte query, which returned an average response of 2,313-bytes. The largest amplification response was 17,377-bytes, 217 times greater than the 80-byte query.
- The Anatomy of a DNSSEC Reflection Attack – Neustar illustrates the command and control servers required to run the botnets and scripts that target DNS name servers to execute DNSSEC amplification attacks.
- Best Practices for Mitigation –For organizations that rely on DNSSEC, Neustar recommends ensuring that your DNS provider does not respond to “ANY” queries or has a mechanism in place to identify and prevent misuse.
“Neustar is focused on using connected sciences to connect people, places and things, which is why network security is so imperative,” said Loveless. “As more organizations adopt DNSSEC, it is critically important to understand how to secure it. The time to fix it is now.”
For more information about “DNSSEC: How Savvy DDoS Attackers Are Using Our Defenses Against Us” please visit https://hello.neustar.biz/201608---Security-Services---Trade-Show---Black-Hat_DNSSEC-LP.html.
Every day, the world generates roughly 2.5 quadrillion bits of data. Neustar (NYSE: NSR) isolates certain elements and analyzes, simplifies and edits them to make precise and valuable decisions that drive results. As one of the few companies capable of knowing with certainty who is on the other end of every interaction, we’re trusted by the world’s great brands to make critical decisions some 20 billion times a day. We help marketers send timely and relevant messages to the right people. Because we can authoritatively tell a client exactly who is calling or connecting with them, we make critical real-time responses possible. And the same comprehensive information that enables our clients to direct and manage orders also stops attackers. We know when someone isn’t who they claim to be, which helps stop fraud and denial of service before they’re a problem. Because we’re also an experienced manager of some of the world’s most complex databases, we help clients control their online identity, registering and protecting their domain name, and routing traffic to the correct network address. By linking the most essential information with the people who depend on it, we provide more than 12,000 clients worldwide with decisions—not just data. More information is available at http://www.neustar.biz
Om Business Wire
Business Wire, a Berkshire Hathaway company, is the global leader in multiplatform press release distribution.
Følg saker fra Business Wire
Registrer deg med din epostadresse under for å få de nyeste sakene fra Business Wire på epost fortløpende. Du kan melde deg av når som helst.
Siste saker fra Business Wire
Celltrion Receives Positive CHMP Opinion for Herzuma® for Trastuzumab Biosimilar15.12.2017 22:13 | Pressemelding
Celltrion, Inc. (KOSDAQ: 068270) announced today that the Committee for Medicinal Products for Human Use (CHMP) of the European Medicines Agency (EMA) issued a positive opinion recommending that Herzuma® (trastuzumab biosimilar) be granted marketing authorization in the European Union (EU) for the treatment of patients with early breast cancer, metastatic breast cancer, or metastatic gastric cancer whose tumors have either HER2 overexpression or HER2 gene amplification. The CHMP’s opinion will now be sent to the European Commission (EC) for final review. Herzuma® is a biosimilar to Herceptin®i, a breast cancer and gastric cancer treatment antibody biologic drug developed by Genentech and marketed by Roche. Herceptin® is a blockbuster drug which had worldwide sales of CHF 6.8 billionii (US$6.8 billion) in 2016, of which CHF 2.1 billioniii (US$2.1 billion) was in
Takeda and TiGenix announce that Cx601 (darvadstrocel) has received a positive CHMP opinion to treat complex perianal fistulas in Crohn’s disease15.12.2017 12:34 | Pressemelding
Takeda Pharmaceutical Company Limited (TSE: 4502) (“Takeda”) and TiGenix NV (Euronext Brussels and NASDAQ: TIG) (“TiGenix”) today announced that the Committee for Medicinal Products for Human Use (CHMP) of the European Medicines Agency (EMA), in conjunction with the Committee for Advanced Therapies (CAT), has adopted a positive opinion recommending a marketing authorization (MA) for investigational compound Cx601 (darvadstrocel). Cx601 is expected to be indicated for the treatment of complex perianal fistulas in adult patients with non-active/mildly active luminal Crohn’s disease, when fistulas have shown an inadequate response to at least one conventional or biologic therapy.2 This recommendation marks the first allogeneic stem cell therapy to receive a positive CHMP opinion in Europe. This press release features multimedia. View the full release here: http://www.businesswire.com/news/home/201712
Bitcoin Romania and Twispay Announce Integration Partnership Providing Users with the Ability to Purchase Bitcoin with Bank Cards15.12.2017 12:21 | Pressemelding
Bitcoin Romania, leading Eastern European Bitcoin exchange & brokerage firm, and Twispay, Swiss-owned European payment processor and FinTech pioneer, today announced the availability of a payment integration that allows a global clientele to acquire Bitcoin and Ethereum cryptocurrencies using Visa and Mastercard bank cards. Unprecedented in Romania, this is one of the first East-Central European integration partnerships that allow consumers to use their cards to purchase cryptocurrency. Until recently, investors could only acquire cryptocurrencies through bank transfers and cash deposits, but the volatility of cryptocurrency markets dictates the need for additional operational flexibility. Investors require faster, safer, more reliable, and more comfortable ways to complete purchases. “One minute can make the difference between a million lost and a million earned. That is pr
Upon Conclusion of the Fourth Annual Forum for Promoting Peace in Muslim Societies, Scholars and Intellectuals Visit the Louvre Abu Dhabi Museum15.12.2017 11:38 | Pressemelding
A high-level delegation of dignitaries, scholars and intellectuals participating in the fourth annual Forum for Promoting Peace in Muslim Societies, visited the Louvre Abu Dhabi museum. The delegation was headed by H.E Mustafa Ceric, former Grand Mufti of Bosnia; alongside Sheikh Mohammad Mukhtar Ould Imbala, Head of Mauritania’s Fatwa & Grievances Supreme Council; H.E Amar Mirghani Hussein, Sudanese Minister of (religious) Guidance and Endowments; and H.E Salho Jay, Imam of the Juma Masjid in South Africa. The Forum was held in Abu Dhabi from 11-13 December 2017, with the participation of more than 700 scholars, intellectuals and religious dignitaries from around the world. This press release features multimedia. View the full release here: http://www.businesswire.com/news/home/20171215005255/en/ Group Photo of the Scholars and Intellectuals during their visit to the L
Kennedy Wilson Acquires 124-Unit Northbank Apartments in Dublin, Ireland for €45 Million15.12.2017 11:00 | Pressemelding
Global real estate investment company Kennedy Wilson (NYSE: KW) announces that it has acquired Northbank Apartments, a wholly-owned 124-unit apartment community in Dublin’s North Docks, for €45 million from Jarmar Properties Limited (In Receivership) acting through David Carson of Deloitte as Statutory Receiver, the lender being the National Asset Management Agency (“NAMA”). Situated in Dublin’s North Docks, Northbank is located just 50 meters from Kennedy Wilson’s existing 84-unit Liffey Trust apartments. The two buildings benefit from great transport links as the LUAS Red line is immediately adjacent connecting to Dublin’s city centre and main train stations in five minutes. “The successful acquisition of Northbank in such close proximity to our Liffey Trust asset allows us to leverage our existing presence and implement our value-add asset management strategy, including a
AML BitCoin Enters Phase II of ICO15.12.2017 09:00 | Pressemelding
NAC Foundation, LLC announces today that the initial coin offering for the AML BitCoin – the world’s only patent-pending compliant digital currency – has been extended for another month to accommodate a torrent of last minute, new coin purchasers and the demands of thousands of current owners of the coin, who have had difficulty navigating the process of establishing the specialized wallet required to hold the innovative digital currency. This second phase of the AML BitCoin initial coin offering will see an increase in the price of the coin, from US $1.00 to US $1.25. The company has already been contacted by prospective purchasers in the slightly higher priced Phase II, and anticipates a further price increase to US $1.50 within a week or two. HitBTC, one of the world’s largest and most active digital currency exchanges, was prepared to list the AML BitCoin for trading on
I vårt presserom finner du alle våre siste saker, kontaktpersoner, bilder, dokumenter og annen relevant informasjon om oss.Besøk vårt presserom