[dns-operations] Caching nameservers as malware distribution mechanism

Paul Hoffman phoffman at proper.com
Tue Mar 8 16:58:40 UTC 2011

Previous message (by thread): [dns-operations] Caching nameservers as malware distribution mechanism
Next message (by thread): [dns-operations] Caching nameservers as malware distribution mechanism
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 3/8/11 8:49 AM, David Ulevitch wrote:
> The botnet malware they are already infected with. :-) They are really just talking about a different distribution mechanism since lots of AV systems hook into the HTTP stream already.

Thanks, that makes much more sense. It is the follow-on data, not the 
original vector.

--Paul Hoffman

Previous message (by thread): [dns-operations] Caching nameservers as malware distribution mechanism
Next message (by thread): [dns-operations] Caching nameservers as malware distribution mechanism
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the dns-operations mailing list