Fredrik Nordberg Almroth, Security Researcher at Detectify, tells the story of how he managed to claim the top-level domain of an entire country – the Congo (DRC), .cd – before any bad actors could snatch it up. He will also discuss domain takeovers (TLD as well as subdomains) and how they can be prevented. Key to this is to keep track of your assets and monitor them for vulns. Visit https://www.securityweekly.com/esw for all the latest episodes!
Technical description of the .cd hack: https://blog.detectify.com/2021/01/19/dns-hijacking-taking-over-top-level-domains-and-subdomains/
A run-through of the basics of DNS hijacking: https://blog.detectify.com/2021/01/19/dns-hijacking-taking-over-top-level-domains-and-subdomains/
Fredrik Nordberg Almroth –
Co-Founder & Head of Engineering at Detectify
Adrian Sanabria –
Senior Research Engineer at CyberRisk Alliance
Paul Asadoorian –
Founder/CIO at Security Weekly/CyberRisk Alliance
Tyler Shields –
CMO at JupiterOne
Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server!