dns name devolution – Computer Security Articles

Local Networks Go Global When Domain Names Collide

August 23, 2024 admin A Little Sunshine, Active Directory, andorra, dns name devolution, Latest Warnings, memphis real-time crime center, memrtcc.ad, mike barlow, mike o'connor, namespace collision, philippe caturegli, seralys, The Coming Storm, Web Fraud 2.0, web proxy auto-discovery protocol, wpad.ad, wpad.dk

Credit to Author: BrianKrebs| Date: Fri, 23 Aug 2024 14:12:31 +0000

The proliferation of new top-level domains (TLDs) has exacerbated a well-known security weakness: Many organizations set up their internal Microsoft authentication systems years ago using domain names in TLDs that didn’t exist at the time. Meaning, they are continuously sending their Windows usernames and passwords to domain names they do not control and which are freely available for anyone to register. Here’s a look at one security researcher’s efforts to map and shrink the size of this insidious problem.

Independent Krebs

Dangerous Domain Corp.com Goes Up for Sale

February 8, 2020 admin Active Directory, corp.com, dns name devolution, jas global advisors, jeff schmidt, Latest Warnings, Microsoft Corp., microsoft windows, mike o'connor, namespace collision, The Coming Storm, U.S. Department of Homeland Security

Credit to Author: BrianKrebs| Date: Sat, 08 Feb 2020 17:32:04 +0000

As an early domain name investor, Mike O’Connor had by 1994 snatched up several choice online destinations, including bar.com, cafes.com, grill.com, place.com, pub.com and television.com. Some he sold over the years, but for the past 26 years O’Connor refused to auction perhaps the most sensitive domain in his stable — corp.com. It is sensitive because years of testing shows whoever wields it would have access to an unending stream of passwords, email and other proprietary data belonging to hundreds of thousands of systems at major companies around the globe.