500M IoT Devices to be Vulnerable to DNS Rebinding Attack

According to Armis, fixing vulnerabilities on all devices is too time-consuming and expensive process for large manufacturers
23 July 2018   709

Armis, a company specializing in cyber security, found that about 500 million modern "smart" devices are vulnerable to an attack called "DNS rebinding." Researchers say that the Internet of things is great for this type of attacks because of deep integration with corporate workflows.

What is DNS rebinding?

An attacker should attach the victim device to malicious DNS and then use it to unintentionally access different domains. DNS rebinding can be used to collect information, start other malicious processes, and the victim device itself plays the role of an intermediate link in the internal network.

In the course of the investigation, the specialists found out that almost all types of IoT devices are subject to attack by DNS rebinding: from routers to IP-cameras and from multimedia players to TV sets. They argue that "smart" devices "perfectly" cope with ensuring the penetration of intruders into internal corporate networks and theft of important data. Experts published a table with the types of vulnerable devices and their number, which reaches 500 million.

DNS Rebinding Table
DNS Rebinding Table

According to Armis, fixing vulnerabilities on all devices is too time-consuming and expensive process for large manufacturers. They argue that vendors simply do not pay attention to minor vulnerabilities such as cross-site scripting (XSS) and cross-site forgery (CSRF), which provide opportunities for DNS reconnection.

Instead, experts suggest the introduction of cyber security monitoring systems instead of waiting for the replacement of old devices with new ones.

Google to Announce .dev Top-Level Domain

Application acception for a new domain will begin in January 2019
13 November 2018   358

At the summit of developers Chrome Dev Google representatives briefly announced the imminent opening of the registration of names for the top-level domain .dev. Application acception will begin in January 2019.

From January 16 to February 19, 2019, brand and trademark owners will have the opportunity to register a domain name with their trademark. From February 19 to 28 there will be an early access stage with a higher price. And from February 28, access will be open to anyone.

As noted, the .dev domain, like the previously opened .app, will receive support for the HTTPS protocol by default. A more detailed description of the domain zone is available on the official website.

In May 2018, Google announced the public registration in the domain zone .app - in the first top-level domain, which allows only secure connections. And in October 2018, early registration began in the .page zone. Unlike .app and .dev, which are designed for developers, the .page zone is focused on personal pages, business and thematic sites. The domain also supports only secure channels.