Key parts of the Internet infrastructure face large-scale attacks that threaten the global system of Web traffic, the Internet’s address keeper said on Friday.
The Internet Corporation for Assigned Names and Numbers (ICANN) said after an emergency meeting that there is “an ongoing and significant risk” to key parts of the infrastructure that affects the domains on which Web sites reside.
“They [hackers] are going after the Internet infrastructure itself,” ICANN chief technology officer David Conrad told reporters. “There have been targeted attacks in the past, but nothing like this.”
The attacks could date back to 2017, but have sparked growing concerns from security researchers in the past few weeks, which prompted the ICANN meeting.
The malicious activity targets the domain name system (DNS), which routes traffic to intended online destinations.
ICANN specialists and others say these attacks have a potential to snoop on data along the way, sneakily send the traffic elsewhere or enable attackers to impersonate or “spoof” critical Web sites.
“There isn’t a single tool to address this,” Conrad said, as ICANN called for an overall hardening of Web defenses.
“This is roughly equivalent to someone lying to the post office about your address, checking your mail, and then hand delivering it to your mailbox,” the US Department of Homeland Security said in a recent cybersecurity alert. “Lots of harmful things could be done to you [or the senders] depending on the content of that mail.”
So-called “DNSpionage” attacks might date back to at least 2017, said Ben Read, FireEye senior manager of cyberespionage analysis.
The list of targets included Web site registrars and Internet service providers, particularly in the Middle East.
“We’ve seen primarily targeting of e-mail names and passwords,” Read said. “There is evidence that it is coming out of Iran and being done in support of Iran.”
DNSpionage hackers appeared intent on stealing account credentials, such as e-mail passwords, in Lebanon and the United Arab Emirates, said Adam Meyers, vice president of intelligence at CrowdStrike, a cybersecurity firm.
Similar attacks took place in Europe and other parts of the Middle East, with targets including governments, intelligence services, police, airlines and the oil industry, cybersecurity specialists said.
“You definitely need knowledge of how the Internet works and you have to handle a lot of traffic being directed to you,” Meyers said of the DNSpionage hackers. “With that access, they could temporarily break portions of how the Internet works. They chose to intercept and spy on folks.”
The attack itself is technically simple, but its scope and targeting of Internet service providers along with large government entities made it “a big deal,” Meyers said.
ICANN is putting out word to Web site and online traffic handlers to ramp up security or leave users vulnerable to being tricked.
The organization urged broader implementation of domain name system security extension technology, which adds digital signatures that act as virtual seals of sorts to expose when data have been tampered with.
“It aims to assure that Internet users reach their desired online destination by helping to prevent so-called ‘man in the middle’ attacks, where a user is unknowingly redirected to a potentially malicious site,” ICANN said in the release.
Part of the challenge to keeping the Internet infrastructure safe is that Web site owners do not always grasp the imperative guarding against wily hackers, Conrad said.
“We want to make sure people understand what it means to own a domain name and put it on the Internet, because all of your customers are only as secure as you are,” Conrad said.
NATIONAL SECURITY THREAT: An official said that Guan Guan’s comments had gone beyond the threshold of free speech, as she advocated for the destruction of the ROC China-born media influencer Guan Guan’s (關關) residency permit has been revoked for repeatedly posting pro-China content that threatens national security, the National Immigration Agency said yesterday. Guan Guan has said many controversial things in her videos posted to Douyin (抖音), including “the red flag will soon be painted all over Taiwan” and “Taiwan is an inseparable part of China,” while expressing hope for expedited “reunification.” The agency received multiple reports alleging that Guan Guan had advocated for armed reunification last year. After investigating, the agency last month issued a notice requiring her to appear and account for her actions. Guan Guan appeared as required,
A strong cold air mass is expected to arrive tonight, bringing a change in weather and a drop in temperature, the Central Weather Administration (CWA) said. The coldest time would be early on Thursday morning, with temperatures in some areas dipping as low as 8°C, it said. Daytime highs yesterday were 22°C to 24°C in northern and eastern Taiwan, and about 25°C to 28°C in the central and southern regions, it said. However, nighttime lows would dip to about 15°C to 16°C in central and northern Taiwan as well as the northeast, and 17°C to 19°C elsewhere, it said. Tropical Storm Nokaen, currently
‘NATO-PLUS’: ‘Our strategic partners in the Indo-Pacific are facing increasing aggression by the Chinese Communist Party,’ US Representative Rob Wittman said The US House of Representatives on Monday released its version of the Consolidated Appropriations Act, which includes US$1.15 billion to support security cooperation with Taiwan. The omnibus act, covering US$1.2 trillion of spending, allocates US$1 billion for the Taiwan Security Cooperation Initiative, as well as US$150 million for the replacement of defense articles and reimbursement of defense services provided to Taiwan. The fund allocations were based on the US National Defense Authorization Act for fiscal 2026 that was passed by the US Congress last month and authorized up to US$1 billion to the US Defense Security Cooperation Agency in support of the
PAPERS, PLEASE: The gang exploited the high value of the passports, selling them at inflated prices to Chinese buyers, who would treat them as ‘invisibility cloaks’ The Yilan District Court has handed four members of a syndicate prison terms ranging from one year and two months to two years and two months for their involvement in a scheme to purchase Taiwanese passports and resell them abroad at a massive markup. A Chinese human smuggling syndicate purchased Taiwanese passports through local criminal networks, exploiting the passports’ visa-free travel privileges to turn a profit of more than 20 times the original price, the court said. Such criminal organizations enable people to impersonate Taiwanese when entering and exiting Taiwan and other countries, undermining social order and the credibility of the nation’s
RSS