Half a billion IoT devices inside of businesses can be hacked through decade-old DNS rebinding attacks
by Cory Doctorow from on (#3VGD2)
https://www.youtube.com/watch?v=hMqL3iG4UfI&feature=youtu.be
In 2008, a presentation at the RSA conference revealed the existence of "DNS rebinding attacks," that used relatively simple tactics to compromise browsers; a decade later, Berkeley and Princeton researchers announced a paper on DNS rebinding attacks against consumer devices (to be presented at August's ACM SIGCOMM 2018 Workshop on IoT Security and Privacy), while independent researcher Brannon Dorsey published similar work. (more")