#+HashtagPLUS
In

Menu

Post image 1
Post image 2
Post image 3
Post image 4
Post image 5
Post image 6
Post image 7
Post image 8
Post image 9
Post image 10
Post image 11
Post image 12
Post image 13
Post image 14
Post image 15
Post image 16
Post image 17
Post image 18
Post image 19
Post image 20
Post image 21
Post image 22
Post image 23
Post image 24
Post image 25
Post image 26
Post image 27
Post image 28
Post image 29
Post image 30
Post image 31
Post image 32
Post image 33
Post image 34
Post image 35
Post image 36
1 / 36
0

Spoofing DNS Records by Abusing DHCP DNS Dynamic Updates

Akamai·Ori David·about 1 month ago
#CMNxvewS
#dns#mitigation#detecting#cybersecurity#research#dhcp
Reading 0:00
15s threshold

Blog Security Research Spoofing DNS Records by Abusing DHCP DNS Dynamic Updates Ori David is a Security Researcher at Akamai. His research is focused on offensive security, malware analysis, and threat hunting.  Executive summary \r\n \r\n Akamai researchers discovered a new set of attacks against Active Directory domains that use Microsoft Dynamic Host Configuration Protocol (DHCP) servers.  \r\n \r\n These attacks could allow attackers to spoof sensitive DNS records, resulting in varying consequences from credential theft to full Active Directory domain compromise. The attacks don't require any credentials, and work with the default configuration of Microsoft DHCP server. \r\n \r\n The number of impacted organizations can be significant. Microsoft DHCP server is very popular; it was observed running in 40% of the networks monitored by Akamai. \r\n \r\n We reported our findings to Microsoft, but a fix is not planned.…

Continue reading — create a free account

Join HashtagPLUS to read full articles, follow hashtags, vote, and join the conversation.

Create free accountLog in
Read More