See your link here

Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.

Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Comcast suffers DNS outage

Service provider says problem unrelated to recent spate of 'pharming' scams

Paul Roberts Today’s Top Stories

or Other Networking and Internet Stories

April 8, 2005 (IDG News Service) -- Problems with the Domain Name System (DNS) servers at Internet service provider Comcast Corp. prevented customers around the U.S. from surfing the Web yesterday, but the company said the interruptions weren't linked in any way to a spate of recent DNS attacks known as "pharming" scams.
Comcast technicians noticed problems with the Philadelphia-based company's DNS servers around 6:30 p.m. EDT. The problems interrupted DNS service to Comcast high-speed Internet customers across the U.S. just hours after the SANS Institute's Internet Storm Center advised Internet service providers to make sure their DNS servers weren't vulnerable to new attacks.
However, the outage wasn't caused by those attacks or by maintenance related to the attacks, according to company spokeswoman Jeanne Russo.
During the outage, Comcast customers who attempted to connect to Web sites such as Google.com received frequent "Page not found" errors on their Web browsers. However, entering the numeric Internet Protocol address of the Web site in question would connect the user to the page.
Comcast technicians began working on the DNS problem immediately after identifying it yesterday evening and restored service to the company's customers by 12:00 a.m. EDT today, Russo said.
The DNS is a global network of computers that translates requests for reader-friendly Web domains, such as www.computerworld.com, into the numeric IP addresses that machines on the Internet use to communicate.
The recent attacks on DNS servers use a strategy called "DNS cache poisoning," in which malicious hackers use a DNS server they control to feed erroneous information to other DNS servers. The attacks take advantage of a vulnerable feature of DNS that allows any DNS server that receives a request about the IP address of a Web domain to return information about the address of other Web domains.
Online criminal groups and malicious hackers have used DNS cache poisoning recently in pharming scams, which are similar to phishing identity theft attacks but don't require a lure, such as a Web link that victims must click on to be taken to the attack Web site. Instead, corrupted DNS servers forward Internet users who are looking for legitimate Web pages, such as Google.com, to Web pages controlled by the attackers, which harvest personal information such as user names and passwords from the victims or install Trojan horse programs or other malicious code, according to the Anti-Phishing Working Group.
The attacks have been increasing in recent months, as Internet users become more savvy about traditional phishing scams and online criminal groups look for new ways to collect sensitive information or financial data from victims, the Anti-Phishing Working Group said.
In March, a rogue DNS server posed as the authoritative DNS server

Continued...
1 | 2 | NEXT

Reprinted with permission from

IDG.net
Story copyright 2008 International Data Group. All rights reserved.

Print this Story

Send Us Feedback

E-mail this Story

Digg this Story

Slashdot this Story

"As the economy heads south, there are plenty of boneheaded CEOs and clueless government officials to blame. Looking at the..." Read more...

"This pilot fish works at a telco that provides DSL hardware access to ISPs. Total number of users: in the..." Read more...

Read more Networking posts or See all Blogs

	BlackBerry Storm sales should be strong, Verizon says
	Microsoft to launch IE8 in '09; RC due out in Q1
	Google shutters its Lively virtual world
	More top stories...

	Review: BlackBerry's Storm is awkward and disappointing
	Microsoft dissed Intel's 915 chip set before making 'Vista Capable' changes
	NASA sniffs out trouble with electronic nose on space station

2008 Salary Survey: IT pay takes tiny leaps

If you're like our 7,000 survey respondents, your paycheck this year has been flattened and your bonus obliterated. We offer 12 ways to plump up your paycheck.

Windows 7 in-depth review and video: This time Microsoft gets it right

Microsoft's next OS might more accurately be called Windows 6.5: It's essentially a better version of Vista.

Twitter for business: 5 ways to tap the power of the tweet

Twitter can be a valuable business tool -- if you know what you're doing. Here's how to juice it for all it's worth.

Microsoft's 'Vista Capable' changes outraged HP, insider e-mails show

By helping Intel with loosened 'Vista Capable' requirements, Microsoft 'severely damaged' its credibility, said an HP exec in a newly unsealed Feb. 2006 e-mail.

Windows 7

Get the latest news, reviews and more about Microsoft's newest desktop operating system

2008 Salary Survey

Find wage data for 50 IT job titles.

All Zones
Business Continuity Zone
The File Data Management Zone
Security Management Zone
The SAS Zone
Business Intelligence and Analytics Zone
The Enterprise Search Zone
Software as a Service Zone
The Security Zone

See your link here

Moving to Windows Vista: The Promise, The Reality

Moving to Windows Vista: The Promise, The Reality
View this exclusive webcast today!

Go to the webcast

Computerworld Executive Bulletin: Building a Robust Antivirus Defense

Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs.
(Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more.

Download this executive briefing

Quick Sizing Guide for SAS Grid Running on HP BladeSystems and EVA Storage

Download this white paper today!
(Source: HP) Designed for CIOs, IT managers, data center managers and grid computing architects seeking to improve performance, SAS Grid Computing on the HP BladeSystem c-Class helps accelerate growth and mitigate risks with a simplified, consolidated infrastructure that's agile enough to efficiently handle change. SAS Grid Manager on HP BladeSystem can lower costs through automation, virtualization and improved IT efficiency.

Download this white paper

White Papers

Read up on the latest ideas and technologies from companies that sell hardware, software and services.

	2008 Internet Malware Trends Report
	Security Trends Overview: Targeted Phishing Attack
	Enterprise Findability Without the Complexity

View more whitepapers

The Security Zone

With the mobility of employees and the ease with which external devices can be brought in and out of a network, continuing to build your security plan for network servers and clients is a must. Fortunately, there is much that organizations can do to protect themselves from attacks - internal and external. Having the right policies, procedures and server configurations is critical...

Learn more in The Security Zone

See All Zones

Fired up about IT? Join Sharkbait and share your true tales of IT. SharkBait is the place for you to sound off about everything IT – the good, the bad, and the rest of the weird stuff you deal with every day.

New baits

"Turning information into a Competitive Advantage"

Companies today are realizing that competitive advantage is harder to sustain when based solely on gains in productivity and cost efficiency. The focus is shifting to invest more in business optimization initiatives which rely on trusted information to develop new insights that deliver better business results. But how can this be done efficiently in a business environment across multiple applications and processes. The answer is an Information Agenda - an innovative approach to transforming business information into a strategic asset for competitive advantage.

View this webcast now! more

See more Webcasts more

Steven J. Vaughan-Nichols: 64-Bit Linux Adobe Flash Player: Surprisingly good When Adobe decided it was time to provide a 64-bit Flash Player, they released it on Linux and Solaris. Wow. [more]

Webcast: The Automation of IT Compliance Programs: Reducing Risk, Cost and Complexity of Corporate Compliance

To meet the growing number of industry and federal regulations, businesses spend significant time, effort, and budget determining how to best meet continuously evolving IT compliance requirements this new Forrester Research and Juniper Networks Webcast led by industry experts who examine global IT security and compliance trends, common IT compliance issues and challenges, and best practices for successful IT compliance programs.

View this webcast

Whitepaper: Tackling the Top Five Network Access Control Challenges

The major challenge enterprises face today is how to create innovative business models and to increase productivity by opening the network to a dynamic workforce, while at the same time protecting critical assets from the vulnerabilities that openness and user mobility bring. In addition, to comply with industry and governmental regulations, enterprises must prove that they have stringent controls in place to restrict access to sensitive data. This paper describes the top five networking access control challenges that companies like yours are facing and solutions that they are deploying today.

Download this white paper

Whitepaper: Addressing PCI Compliance with a Comprehensive Network Access Control Solution

The Payment Card Industry (PCI) is one of the most comprehensive data security standards in a cluster of regulations that have emerged over the past decade. Meeting its requirements is both complicated and expensive for many companies. Learn how a comprehensive access control solution allows retailers and consumer organizations adhere to the core tenets of PCI, and delivering the necessary information and reports needed for compliance audits.
Download this white paper

Whitepaper: Control System Cyber Vulnerabilities and Mitigation of Risk for Utilities

Today's global industrial infrastructure includes thousands of electric utilities, water/wastewater management companies, oil and gas suppliers, chemical manufacturers and other facilities critical to daily functioning. Learn why relying on off-the-shelf operating systems and Internet-based remote access control to carry out production tasks, traditional control networks can leave today's global industrial infrastructures vulnerable to hackers, extortionists, worms, viruses and application-level attacks. Deploying network-based security can protect these at-risk systems–without requiring infrastructure replacement.
Download this white paper

Sponsored Links

Can you catch the phish and spam? Try to spot common email scams.

Defy the laws of reporting - introducing Crystal Reports(R) 2008. Discover it now.

Instant server virtualization. Free download!

See the power of the new Quad-Core AMD Opteron" processor.

Citrix NetScaler 9 - Slash server costs by 60%

Kodak i600: Easy on your operators and your bottom line. Learn more about the i600 now.

Rackspace: The True Value of a Hosting Provider

SYMANTEC IS EMAIL ARCHIVING: Enterprise Vault - Free EMAIL HEALTH CHECK

Free Trial - New Diskeeper 2008 unleashes system speed. Get maximum system performance and reliability automatically now!

Samsung Printing Solutions--control workflow, costs and operations

Learn what 389 global technology decision-makers had to say about developing service-level agreements (SLAs) and measuring service quality.

The Future is Fusion. Only from AMD. See our video to learn more.

Beyond consolidation: five reasons why you should start virtualizing

Renowned Engineering Institution Chooses AMD Processor-Based Servers

What can you do with two monitors and your laptop? See more&

Not All QSAs Are Created Equal: What You Should Know Before You Buy

The arrival of Serial Attached SCSI (SAS) marks a new era in storage scalability

The AMD Virtual Experience Virtual Trade Show

Learn about the new breed of mobile technologies and services and how to pick the right devices and software for your needs.

Learn how the new Quad-Core AMD Opteron(TM) processor improves performance

Microsoft SQL Server 2008. Read Case Studies & Try for Free.

Web Hosting UK - Cheap Windows Linux PHP MySQL ASP MSSQL Hosting in UK

HP StorageWorks products - control, consolidation and confidence.

Meru announces Wireless LAN Virtualization. Optimize RF use. Lower costs. Learn More

Save up to 64% plus 3 FREE Gifts from Omaha Steaks.

SYMANTEC IS EMAIL ARCHIVING: Enterprise Vault - Get your free white paper. Effective strategies for backup, archiving and recovery

Predict the future with HP Insight Power Manager

Reliable. Long-lived. Portable. Affordable. Energy-efficient...Tape Storage

Disk Backup and EMC: Addressing Today's Business Problems

Download Windows Server 2008 Hyper-V

How-to video: Smart steps to efficient power management

Tape vs. Disk...Which Costs More? Read "Disk and Tape TCO Square off Again"

Intercept Spam & Viruses With MessageLabs

Leverage Your Cisco infrastructure for Superior Application Performance

Learn about the AMD Virtual Experience

Introducing: Project Icebreaker

About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map

CIO

Computerworld

CSO

DEMO

GamePro

Games.net

IDG Connect

IDG World Expo

Infoworld

The Industry Standard

ITworld

JavaWorld

LinuxWorld

MacUser

Macworld

Network World

PC World

Playlist

Copyright © 2008 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.

	Finance
	Security
	Computerworld Daily News (First Look and Wrap-Up)
	Computerworld Blogs Newsletter
	The Weekly Top 10