« Hercules 400 laser makes you a man for a mere $3,000 | Main | The computer helper: Figuring out firewalls - Feature »
Hackers Abuse Domain-Name Trust
By admin | November 20, 2007
Hackers Abuse Domain-Name Trust
Using variations on trusted, popular domains has long been a common tactic for scammers, spammers and porn sites. But cyber criminals have devised a new twist on the misspelled domain-name trick by hijacking IP addresses. And they tried it on Yahoo.
To fix the old problem, server-based security products would trace the IP address of the server behind the domain. Once the IP address resolved the misspelled domain name, the products would then compare the IP address against a database of known fraudulent sites or questionable locations. So if a site were masquerading as eBay but the filters found it was really a server in China that had only been established one week earlier, it would block access.
InternetNews, November 20, 2007 23:21 GMT+01
Topics: Software |