Update: Two DNS servers hit by denial-of-service attacks
The attacks were targeted at Network Solutions' Worldnic name servers
Computerworld - In the second attack of its kind in the past few days, Domain Name System (DNS) servers at Network Solutions Inc. were hit by a denial-of-service attack this afternoon, resulting in a brief performance degradation for customers, according to the company.
The attacks, which started at around 2:20 p.m. EST, were targeted at the companys WorldNIC name servers and resulted in a service degradation for about 25 minutes before the server was restored to normal, a spokeswoman for the company said.
A Network Solutions spokeswoman declined to say what measures the Herndon, Va.-based company took to mitigate the attack.
Over the weekend, Joker.com, a domain-name registrar in Germany, was hit with a similar distributed denial-of-service (DDoS) attack that disrupted service to customers.
In an advisory posted on its site, Joker said that massive attacks against its DNS servers had affected the DNS resolution of Joker.com as well as domains belonging to its customers.
In an update posted today on its Web site, Joker.com said the DDoS attack began on March 20 and continued through Sunday. A minor attack still continues, the company said.
Upstream providers reported traffic peaks of about 1.3 Gigabits per second on a single line, Joker.com said in its note. This was enough to overload our lines, causing communication problems between our border routers and the upstream providers. The result was a complete service interruption for a short period on March 20, the company said.
Joker.com responded to the attack by adding more name servers, some of them hosted in external data centers. It also reserved more bandwidth for Joker.com exclusively.
These measures seem to have helped, since the later attacks did not affect our systems as much as the first one, the company said.
According to Netcraft Ltd., a Bath, England-based Internet performance monitoring company, more than 550,000 domains are registered with Joker. Any of those domains that use Joker's DNS servers are likely to be affected, Netcraft said in a note posted on its Web site.
A DNS server is used to look up and translate domain names such as Computerworld.com from plain text to numeric Internet Protocol addresses.
Attacks against DNS servers, though relatively rare until now, are considered especially critical because of their potential to bring down large numbers of Web sites.
In October 2002, all 13 of the Internet's root DNS servers were victims of a massive DDoS attack that raised concerns about the Internets infrastructure but did little damage otherwise.
Just a week ago, VeriSign Inc. said that about 1,500 organizations worldwide had been attacked earlier this year by unknown hackers who employed botnets and DNS servers to launch a particularly devastating form of DoS attack (see "VeriSign details massive denial-of-service attacks").
In the attacks described by VeriSign, DNS servers were used to amplify the affects of denial-of-service attacks and were not really targets themselves. But security experts said they believe that DNS servers could just as easily become targets.
Read more about Applications in Computerworld's Applications Topic Center.
- Five Steps to Achieve Success in your Application Security Program This white paper provides a general framework your organization can use to create or build upon an application security program. It includes guidelines...
- Unlock the Value of Enterprise Mobility Download this guide and learn how to manage the secure deployment of enterprise mobile apps and data, while still encouraging the levels of...
- Rebranded Quadmark revamps its IT solutions with Google Apps Switching to Google Apps halved Quadmark's IT admin costs while achieving 10% time savings per employee. The global consulting firm now spends 80%...
- Manufacturing Outlook: Improving time to market, operational effectiveness and innovation in a highly competitive environment An enterprise project portfolio management solution can help manufacturers position themselves in the new competitive landscape.
- Live Webcast Best Practices: How to Improve Business Continuity with Virtualization VMware solutions include a range of business continuity capabilities to help ensure availability for applications across your virtualized environment. Learn More>>
- Live Webcast
Transforming Finance, Procurement and Supply Chain Effectiveness with Cross-Functional Analytics
Date: May 6th, 2014
Time: 1 PM EDT
Attend this Webcast to find out how Oracle's packaged analytic applications enable line-of-business managers to examine all...
- Live Webcast LIVE EVENT: 5/7, The End of Data Protection As We Know It. Introducing a Next Generation Data Protection Architecture. Traditional backup is going away, but where does this leave end-users?
- Video Stream Quality Impacts Viewer Behavior This scientific white paper, using statistical data from Amakai's streaming network, analyzes how changes in video quality cause changes in viewer behavior.
- Service-Enabling CICS Applications: Best Practices This informative webcast provides an informed, thorough look into CICS service-enablement options and how they can affect your environment. You'll learn how to...