Hackers exploit 'serious flaw' in architecture of internet
Flaw in 'Bind' software will mean users may find some sites are not available in next few days
Hackers are exploiting a "serious flaw" in the architecture of the internet, says an online security firm. A vulnerability in the software which directs users to websites may mean some sites are offline over the next few days.
The hackers are targeting Bind, a piece of software which translates URLs into IP addresses, allowing users to visit websites by typing in meaningful words such as theweek.co.uk rather than a string of confusing digits.
A bug was discovered in Bind some time ago, the BBC reports - and a patch is already available to fix the weak point and block the hackers. Unfortunately, says Daniel Cid of internet security firm Sucuri, many site owners have not yet applied it.
Subscribe to The Week
Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.
Sign up for The Week's Free Newsletters
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.
Cid said: "Based on our experience, server software, like Bind, Apache, OpenSSL and others, do not get patched as often as they should. A few of our clients, in different industries, had their DNS servers crashed because of it."
The weakness in Bind allows hackers to launch DoS (denial of service) attacks on servers, bombarding them with so many requests for pages that they crash and have to be taken offline.
There is expected to be a flurry of such attacks over the next few days as hackers learn how to exploit the problem and make hay while the sun shines. Site owners will be scrambling to update their software.
However, Cid added that the situation was not disastrous, with the impact on most users minimal. Sites can still be reached via other routes, with cached addresses (those for sites a user has already visited) still working around the world.
He said: "It's not a doomsday scenario, it's a question of making sure the DNS structure can continue to work while patches are rolled out. Average internet users won't feel much pain, besides a few sites and email servers [being] down."
Create an account with the same email registered to your subscription to unlock access.
Sign up for Today's Best Articles in your inbox
A free daily email with the biggest news stories of the day – and the best features from TheWeek.com
-
The pros and cons of globalization
Pros and Cons Globalization can promote economic prosperity but also be exploitative
By Justin Klawans, The Week US Published
-
Magazine solutions - October 11, 2024
Puzzles and Quizzes Issue - October 11, 2024
By The Week US Published
-
Magazine printables - October 11, 2024
Puzzles and Quizzes Issue - October 11, 2024
By The Week US Published
-
How cybercriminals are hacking into the heart of the US economy
Speed Read Ransomware attacks have become a global epidemic, with more than $18.6bn paid in ransoms in 2020
By The Week Staff Last updated
-
Language-learning apps speak the right lingo for UK subscribers
Speed Read Locked-down Brits turn to online lessons as a new hobby and way to upskill
By Mike Starling Published
-
Brexit-hobbled Britain ‘still tech powerhouse of Europe’
Speed Read New research shows that UK start-ups have won more funding than France and Germany combined over past year
By Mike Starling Published
-
Playing Cupid during Covid: Tinder reveals Britain’s top chat-up lines of the year
Speed Read Prince Harry, Meghan Markle and Dominic Cummings among most talked-about celebs on the dating app
By Joe Evans Last updated
-
Brits sending one less email a day would cut carbon emissions by 16,000 tonnes
Speed Read UK research suggests unnecessary online chatter increases climate change
By Joe Evans Published
-
Reach for the Moon: Nokia and Nasa to build 4G lunar network
Speed Read Deal is part of the US space agency’s plan to establish human settlements on the lunar surface
By Mike Starling Last updated
-
iPhone 12 launch: what we learned from the Apple ‘Hi, Speed’ event
Speed Read Tech giant unveils new 5G smartphone line-up
By Mike Starling Last updated
-
Russian agency behind US election meddling ‘created fake left-wing news site’
Speed Read Facebook says real reporters were hired by fake editors to write about US corruption
By Holden Frith Published