[dns-operations] BGP Hijack of Amazon DNS

Phillip Hallam-Baker phill at hallambaker.com
Sun Apr 29 18:56:29 UTC 2018

On Sun, Apr 29, 2018 at 2:05 PM, Randy Bush <randy at psg.com> wrote:

> > I tend to think that the typical actual attacker, *today*, does not
> > really understand the TTL and its use, and leaves the default TTL.
> attackers tend to go for the least effort they have to expend
> to succeed.  this attack is unusual in its seeming unneeded
> sophistication.  this is why the 'this is a test run' theory
> appeals to me.

​The did get away with $17 million in untraceable cryptocurrency...​
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20180429/e58ba523/attachment.html>

More information about the dns-operations mailing list