Friday, February 26, 2010

DNS Security Issues Are Real, People!














Before the eve of my 40th birthday, if you asked me, "C. what's all this talk about DNS Security Issues?" I probably would have said, " I don't know, but we will research it and get right back with you.

Well, today approximately- 48 hours later, we don't "think" we got a grasp on DNSSEC (Domain Name Server Security) related issues, we know that we do.

Why? Well, it appears we have been made a target in some Hacker or Group of Hackers game utilizing the Yahoo Search Engine.

How do we know? Well, I'm going to try and put the explanation in layman terms in this blog to give you a clearer understanding. I don't challenge any experts to dispute our findings, I invite legitimate Cyber Security Experts (Anonymous, if need be.) to concur or correct me along this epic journey in the World of Computers or Information Technology.

Anyway, please prepare to take mental notes and I will talk in bullet points beyond this statement below:

* When building a marketing image on the Internet through various web sites and social networks, it is not conceited to look up your Brand Name or Company Name, it is in fact a wise thing to do. This allows you to identify your reach and your audience.

* Wednesday Feb. 24th, 2010 - A BIE Official was researching "C. Henry Adams & BIE" on the Internet through (3) three main search engines (Google, Bing & Yahoo). The objective was to identify whether or not input purposely submitted was actually being found somewhere on the Worldwide Web. Note: A Trade secret Strategy

* It was discovered that "C. Henry Adams & BIE" was found to be associated with the following websites below to name a few:


1. Facebook.com/chenryadams
2. Identi.ca/chenryadams
3. Chenryadams.blogspot.com/
4. www.myspace.com/chenryadams
5. www.youtube.com
6. twitter.com/cHenryAdams
7. www.naymz.com/c__henry_adams_2488085
8. www.archive.org
9. www.linkedin.com/in/biechenryadams
10. www.biemediagroup.com
11. http://www.americantowns.com/ga/lithiasprings/videos
12. www.americantowns.com/ga/powdersprings/videos
13. topsy.com/twitter/chenryadams
14. www.facebook.com/posted.php?id=43407502853
15. www.blogtalkradio.com/chenryadams
16. www.mybloglog.com
17. www.twibs.com
18. topsy.com/tb/.../good_guys_bring_down_the_megad_botnet.html
19. http://www.veteranownedbusiness.com/business/1022/broadcasting-interest-enterprise-inc
20. http://www.twellow.com

Note: All of these web sites are properly registered with a group called IANA (Internet Assigned Numbers Authority www.iana.org ) and if this was not true, you would not be able to access them via their domain name on the Net.

I can hear somebody saying right now, "So, what's the problem, I don't understand."

My answer: Alright, standby- we are going to explain this situation coming up.

* Well, apparently Hackers (The Bad Guys in Black Hats) have figured out how to either create or manipulate a DNS (Domain Name Server). By placing "False" Domain Names on web pages to fool you and redirect links to an unnamed server (computer that works with & connects to the Internet to send data) which will then inadvertently download an executable file (A computer program that ends in ---> .exe or sometimes disguised as ---> .tmp) to your computer causing very serious damage beyond your own imagination. Note: NOT ALL '.exe' files are BAD.

Note: What we just stated is not a Fairy Tale or a joke, it is a reality in the real sense and we recommend that you read these statements above several times to try and comprehend what is being said if you don't understand.

Now, you may ask, well Mr. Adams, how do you know these things and how do it apply to your Brand Name & Company?

* Ok, as the BIE Official scanned the web page results found on the Yahoo Search Engine web site, it was discovered that someone had purposely created a link pulled by the Yahoo Search Engine that had:

1) " C. Henry " or

2) " December 18 or 19, 2009 C Henry "

in blue and in the description somewhere "C. Henry Adams is President & CEO of BIE, Inc."

These two particular type links described above were shown in illustration yesterday in our Press Release. But, to review them, click on our BIE CYBER TEAM Page Below:

http://www.biemediagroup.com/cybrattcknChnry.htm


* Now, to determine if the Domain Names which falsely identified with the links were real, BIE CYBER TEAM performed a simple tracking test which is also illustrated in the above web page. What this tracking test or program found suggested that the Domain Names were not registered with IANA at that time nor was there an IP (Internet Protocol) Address assigned to them, thus an indicator of an DNSSEC issue that Yahoo has not solved.

Before I go, below is some recent articles posted on the Net related to this issue to read:

1) Intel latest to admit January hacking attack
http://www.v3.co.uk/v3/news/2258420/intel-latest-claim-january

2) Attack Unmasks User Behind The Browser
http://www.darkreading.com/insiderthreat/security/client/showArticle.jhtml?articleID=223100436

3) Comcast (finally) brings security extensions to DNS
http://www.theregister.co.uk/2010/02/24/comcast_dnssec/


BIE CYBER TEAM Theory of Cyber Attack:

a) Hacker hacks DNS (server) or creates a redirect computer program to a computer that downloads bad files to Unsuspected Internet User's Computer.

b) Unsuspected Internet User has broadband connection to the Internet and works from home sometimes on a particular computer.

c) Unsuspected Internet User utilize a Internet Browser that does not protect them from connecting to bad web sites that auto download bad files.

d) Major Internet Companies fail to install DNSSEC software to protect their Unsuspected Internet Users.

e) Hacker utilize espionage techniques to gather bits and pieces about a particular or targeted Unsuspected Internet User to access a major company.

f) When the Hacker succeeds with their constant approach, the Unsuspected Internet User & Major Company loses.

Preventive Maintenance:
1) Train and educated Unsuspected Internet User
2) Turn-off the computer when not in use on a Broadband Connection.
3) Utilize an Internet Browser that protects Unsuspected Internet Users from connecting to bad web sites.
4) Be Vigilant & Report all Internet Incidents to US Cert.gov

So, what are your thoughts?

Sign,

C. Henry Adams
President / CEO
Broadcasting Interest Enterprise, Inc.
(404) 348-8319
bienminc@gmail.com
http://biemediagroup.com

Google " C. Henry Adams & BIE "

Follow Me On Twitter http://twitter.com/chenryadams

Promoting Small Business 24 Hours a Day, 7 Days a Week and 365 Days a Year!

The information contained herein is for the exclusive use of the original recipient. This information is granted for limited distribution within the recipient's place of business for planning purposes only. Further dissemination, whether private or public is prohibited.
Sphere: Related Content

1 comment:

  1. This comment has been removed by a blog administrator.

    ReplyDelete

Write A Comment And Tell Us What You Think.

C HENRY BLOGS ARCHIVE

Enter your email address:

Delivered by FeedBurner