Kaminsky Goes To Black Hat, Details Major DNS Flaw

Las Vegas (dbTechno) - Dan Kaminsky spoke before a packed house at the Black Hat conference in Las Vegas, talking about the major DNS flaw which has been making headlines since July.

The DNS flaw has been a major topic since early July, and was originally planned to be revealed at Black Hat before it was made public earlier by a different source.

Kaminsky spoke before a packed crowd to explain the DNS flaw, stating that DNS is like the online version of 411.

He explained that when DNS breaks, everything else breaks. When you are trying to get to a certain site, and you type in that site, it is the DNS which gets you to it.

Moving forward, he stated that the DNS flaw has to do with DNS cache poisoning, and can change how things work.

Basically, you could try to go to a site such as Google.com and find yourself at a site with malicious content.

The hacker has full control over where you get routed to, and this includes e-mails as well.

Kaminsky urged companies to patch the DNS flaw immediately back in early July, after it was revealed to the public.

The security researchersMatasano Security, as well as Halval Flake posted about the DNS flaw on July 21.

There are 35 different ways that the attack can be execuited, as technology vendors work to patch, and patch now.