Security firm Wiz, announced that they had discovered a simple loophole that allows the interception a portion of dynamic DNS traffic from all Internet traffic that was routed through managed DNS providers such as Google and Amazon.
This bug gives anyone the ability to see what is going on inside companies and government organisations who used Managed SAAS DNS services.
The researchers said, “The dynamic DNS traffic we wiretapped came from over 15,000 organisations, including Fortune 500 companies, 45 U.S. government agencies, and 85 international government agencies,” adding that “the data included a wealth of valuable intel like internal and external IP addresses, computer names, employee names, and office locations”.
The DNS vulnerabilities have now been addressed and patched. Further information can be found here.
About brandsec
bandsec is a corporate domain name management and brand protection company that looks after many of Australia, New Zealand and Asia’s top publicly listed brands. We provide monitoring and enforcement services, DNS, SSL Management, domain name brokerage and dispute management and brand security consultation services.