My Next Class
Intrusion Detection In-Depth | Online | US Eastern | Apr 26th - May 1st 2021 |
Intrusion Detection In-Depth | Online | British Summer Time | May 24th - May 29th 2021 |
NYTimes/Twitter Compromise
https://isc.sans.edu/forums/diary/NY+Times+DNS+Compromised/16451
MSFT Refreshed Patches
https://isc.sans.edu/forums/diary/Microsoft+Releases+Revisions+to+4+Existing+Updates/16448
NIST SP800-40 Document about Patch Management
http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-40r3.pdf
HTTP Nowhere
http://threatpost.com/firefox-extension-http-nowhere-allows-users-to-browse-in-encrypted-only-mode/102108
https://isc.sans.edu/forums/diary/NY+Times+DNS+Compromised/16451
MSFT Refreshed Patches
https://isc.sans.edu/forums/diary/Microsoft+Releases+Revisions+to+4+Existing+Updates/16448
NIST SP800-40 Document about Patch Management
http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-40r3.pdf
HTTP Nowhere
http://threatpost.com/firefox-extension-http-nowhere-allows-users-to-browse-in-encrypted-only-mode/102108
Discussion
What about the Domain Lock feature offered by Registrars? As I understand it, additional credentials are required to change a DNS record. Would that have thwarted the attack since only the login credentials were compromised and leveraged to facilitate the attack?
Posted by LawsonPoling on Thu Aug 29 2013, 13:58
Are there any utilities available to easily monitor your DNS zones for changes?
New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form
Intrusion Detection In-Depth | Online | US Eastern | Apr 26th - May 1st 2021 |
Intrusion Detection In-Depth | Online | British Summer Time | May 24th - May 29th 2021 |
Defending Web Applications Security Essentials | Online | Central European Summer Time | Jun 14th - Jun 19th 2021 |
Intrusion Detection In-Depth | Online | British Summer Time | Jul 5th - Jul 10th 2021 |
Defending Web Applications Security Essentials | Online | British Summer Time | Aug 23rd - Aug 28th 2021 |