Bitsquatting: DNS Hijacking without exploitation

Mind blown.  (Warning, extreme techie geek content is contained in this link.)

Bitsquatting refers to the registration of a domain names one bit different than a popular domain. The name comes from typosquatting: the act of registering domain names one key press different than a popular domain. Bitsquatting frequently resolved domain names makes it possible to exploit computer hardware errors via DNS. For more details on bitsquatting my research, please see my Blackhat 2011 whitepaper. Someone has posted a youtube video of my DEFCON 19 talk about this topic. The slides from my DEFCON 19 talk are also available.

Link: http://dinaburg.org/bitsquatting.html

Leave a Reply