18 Apr 19

Response to Recent Reports on DNS Hijackings

In response to recent reports on DNS hijackings, Netnod would like to state that there is no indication that any new attack has been successfully aimed at Netnod or that there has been any negative effect on any of Netnod’s services, customers or the i.root-servers.net service we operate.

This statement is in response to reports on the DNS hijackings affecting Netnod that were first identified in January 2019. Recent reports, based on a Cisco Talos blogpost, have suggested that the same threat-actors have made repeated attempts to attack Netnod since then. Cafax, a small DNS consultancy run by one of Netnod’s employees, has been targeted as part of an attempted attack against Netnod. There is no evidence, however, that there has been any negative effect on any of Netnod’s services, customers or the i.root-servers.net service we operate.

Our initial statement on the DNS hijacking remains valid and accurate. The statement, where we also outline the security improvements put in place to protect Netnod’s infrastructure, is available at:

https://www.netnod.se/news/statement-on-man-in-the-middle-attack-against-netnod

We would also like to reiterate the joint statement made by the 12 root server operators that states there has been no impact on the public root service or the integrity of the root zone.

Share