Pulse of Truth

473 readers

126 users here now

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

founded 1 year ago

MODERATORS

[email protected]

Local Networks Go Global When Domain Names Collide (krebsonsecurity.com)

submitted 2 months ago by [email protected] to c/[email protected]

1 comments fedilink hide all child comments

The proliferation of new top-level domains (TLDs) has exacerbated a well-known security weakness: Many organizations set up their internal Microsoft authentication systems years ago using domain names in TLDs that didn't exist at the time. Meaning, they are continuously sending their Windows usernames and passwords to domain names they do not control and which are freely available for anyone to register. Here's a look at one security researcher's efforts to map and shrink the size of this insidious problem.

top 1 comments

sorted by: hot top controversial new old

[–] [email protected] 2 points 2 months ago

Here's a radical idea: quite making all these stupid full-word tld's that nobody asked for.