The Prevelance of DNS Cache Poisoning in Many Developing Countries

How to Prevent DNS Spoofing

DNS cache poisoning (DNS spoofing) means you are being redirected to an IP address other than the one you intended to go to because the DNS name server you are using has been successfully attacked.  Your new destination may look exactly like your intended destination.  Downloading malware at the fake site is a common next step for the victim.

The main problem is that ISPs in many developing countries do their DNS resolution on the cheap, or they do not know how to properly set it up (or both).  Software that could prevent problems like DNS spoofing is often not bothered with.  Sometimes the ISP just does not care.

What can one do?  Use Mozilla and the WorldIP add-on.  WorldIP actually warns you of attacks like this as they happen.  Use HTTPS Everywhere.  If your destination site has HTTPS, then you can check to see that a valid certificate was issued to the owner of the website you are visiting.  Use a VPN.  VyprVPN is a good choice.  If you are at home in a developed country prior to taking a foreign trip, then have VyprVPN set up on your computer before you go venturing out into the wilds of the unknown.  VyprVPN, with its own NAT Firewall and DNS servers, will assure that you do not fall victim to DNS cache poisoning while traveling.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s