redpillorblue (OP)
Jr. Member
Offline
Activity: 30
Merit: 9
|
|
April 28, 2018, 02:31:49 PM |
|
I have been compiling a guide (for everyone and my team) on how to protect yourself from online scammers here: https://bitcointalk.org/index.php?topic=3415026.msg35714276#msg35714276And I am yet to find an definitive answer to how to protect yourself from DNS Hijacking. From my understanding, this type of hijack can happen either on your own machine (simple, if your machine is compromised), or from the website level (more sophisticated attack). Any ideas / tools / methods you use to detect / prevent such attacks?
|
|
|
|
Xester
|
|
April 29, 2018, 12:24:09 PM |
|
I have been compiling a guide (for everyone and my team) on how to protect yourself from online scammers here: https://bitcointalk.org/index.php?topic=3415026.msg35714276#msg35714276And I am yet to find an definitive answer to how to protect yourself from DNS Hijacking. From my understanding, this type of hijack can happen either on your own machine (simple, if your machine is compromised), or from the website level (more sophisticated attack). Any ideas / tools / methods you use to detect / prevent such attacks? I have already read your tagged post on this forum before and I agree with you pertaining the Trojans that attacked one's pc, infiltrate and hacked important datas stored in the PC. There was a very famous trojan mining software that enters your computer and mines cryptocurrency without you knowing, aside from that they are accessing your important information on your pc. The best way to protect yourself from that Trojan is to install Bit Defender on your computer. It is effective against Trojan.
|
|
|
|
redpillorblue (OP)
Jr. Member
Offline
Activity: 30
Merit: 9
|
|
April 30, 2018, 07:14:50 AM |
|
I have been compiling a guide (for everyone and my team) on how to protect yourself from online scammers here: https://bitcointalk.org/index.php?topic=3415026.msg35714276#msg35714276And I am yet to find an definitive answer to how to protect yourself from DNS Hijacking. From my understanding, this type of hijack can happen either on your own machine (simple, if your machine is compromised), or from the website level (more sophisticated attack). Any ideas / tools / methods you use to detect / prevent such attacks? I have already read your tagged post on this forum before and I agree with you pertaining the Trojans that attacked one's pc, infiltrate and hacked important datas stored in the PC. There was a very famous trojan mining software that enters your computer and mines cryptocurrency without you knowing, aside from that they are accessing your important information on your pc. The best way to protect yourself from that Trojan is to install Bit Defender on your computer. It is effective against Trojan. Yep, keeping your machine clean with some common sense (like anti viruses and malware protection softwares) keeps this at bay. That sorts it out for first way of DNS hijacking. I am more interested in second way of hijacking, where the DNS servers, somewhere in the world go rogue and start routing to malicious websites.
|
|
|
|
Butterfly Protocol
Copper Member
Newbie
Offline
Activity: 18
Merit: 0
|
|
September 13, 2019, 07:13:33 AM |
|
I have been compiling a guide (for everyone and my team) on how to protect yourself from online scammers here: https://bitcointalk.org/index.php?topic=3415026.msg35714276#msg35714276And I am yet to find an definitive answer to how to protect yourself from DNS Hijacking. From my understanding, this type of hijack can happen either on your own machine (simple, if your machine is compromised), or from the website level (more sophisticated attack). Any ideas / tools / methods you use to detect / prevent such attacks? Phishing and Hijacking are not to be neglected! Using public DNS is dangerous if your IP is exposed, a plethora of misdeeds can occur. If you take a look at what Butterfly is doing, you will find that much more enthralling than using a standard, centralized DNS. Butterfly enables individuals to execute a single transaction and own their domain name forever, free of future payments, which are currently standard, as simple as that. Once a domain name is created and acquired, the initial registrar is its sole owner. This in itself is a major breakthrough in how domain name ownership works. Butterfly has also developed an inherent ecosystem with a native cryptocurrency token, which allows users to create, sponsor, and execute domain names and their creation.
|
|
|
|
Baby Dragon
Sr. Member
Offline
Activity: 896
Merit: 272
OWNR - Store all crypto in one app.
|
|
September 23, 2019, 05:50:38 PM |
|
Its very detailed which is helpful for everyone especially for those people who's still doesn't have enough understanding on how they can secured themselves from scammers. We need to be very attentive and aware because we can find scammers everywhere that is the reason why sometimes we need to do our own research before making decision. Thank you for this, it enlighten me.
|
| | | | BUY CRYPTO AT REASONABLE RATES▄▄███████▄▄ ▄█████▀█▀█████▄ ████ ▀████ ███████ ███ █████ ███████ ▀█████ ███████ ███ █████ ████ ▄████ ▀█████▄█▄█████▀ ▀▀███████▀▀ | ▄▄███████▄▄ ▄█████▀ ▀█████▄ ██████▀ ▀██████ ██████▀ ▀██████ █████▀ ▀█████ █████▀▀▄▄ ▄▄▀▀█████ █████▄ ▀ ▄█████ ▀█████▄ ▄█████▀ ▀▀███████▀▀ | ▄▄███████▄▄ ▄█████▀▀▀█████▄ ██████ ▐███████ ██████▌ ▀▀███████ █████▀ ▄████████ ████▄ ▀▀▀▀▀▀████ ███▌ ▄███ ▀█████████████▀ ▀▀███████▀▀ | & | OTHER COINS |
| | Partner of BITFINEX | | |
|
|
|
Artemis3
Legendary
Offline
Activity: 2030
Merit: 1573
CLEAN non GPL infringing code made in Rust lang
|
|
September 25, 2019, 04:40:27 PM |
|
I have been compiling a guide (for everyone and my team) on how to protect yourself from online scammers here: https://bitcointalk.org/index.php?topic=3415026.msg35714276#msg35714276And I am yet to find an definitive answer to how to protect yourself from DNS Hijacking. From my understanding, this type of hijack can happen either on your own machine (simple, if your machine is compromised), or from the website level (more sophisticated attack). Any ideas / tools / methods you use to detect / prevent such attacks? That's easy, use a secure OS, and manually input your own trusted DNS resolvers. I would recommend the use of an OS Like Linux, and dnscrypt-proxy as dns cache, which happens to use the newfangled secured DNS methods that third parties (such as your pesky ISP) can't sniff on to determine what sites you are resolving all the time and data mine you or worse. Sure, in theory you could tell your windows to manually use cloudflare's or google's, but any random malware of the day can wreak havok at any moment without you even noticing. Worse they would resolve a legit site into phishing site... Which is why manually inputting an address in a browser isn't as safe as some think it is... While less common, hijacking can also occur upstream, at your ISP level, or above that, sometimes by the State... Dnscrypt-proxy is great because it self updates a list of secure DNS resolvers that use your favorite secured methods of communication, and is always using the one with the lowest latency. It also caches, so its great for LAN setups...
|
█████████████████████████ ██████████████████████████ ██████████████████████████ ███████████████████████████ | BRAIINS OS+| | AUTOTUNING MINING FIRMWARE| | Increase hashrate on your Bitcoin ASICs, improve efficiency as much as 25%, and get 0% pool fees on Braiins Pool | |
|
|
|
bitbunnny
Legendary
Offline
Activity: 2912
Merit: 1068
WOLF.BET - Provably Fair Crypto Casino
|
|
September 25, 2019, 04:55:00 PM |
|
To keep the hygene of your device is very important, in.sense of antivirus, regulate update, trusted source software and similar. To use OS like Linux might also help. There is no way to get 100% protection but you mustn't neglect all possible ways to secure yourself. To my opinion user awarness is still very low and that is why we have so many successful cyber threats and attacks.
|
|
|
|
BITDV
Legendary
Offline
Activity: 1400
Merit: 1001
Undeads.com - P2E Runner Game
|
|
September 26, 2019, 06:53:10 AM |
|
Here is my way to protect my laptop from any hacking activities, ofcourse my way not give any warranty your system will not injected atleast this is your first mitigation
1. Make sure we installed anti virus 2. Make sure firewall is on 3. Use private tab to visit fishy website 4. do not ever install any app, plugin to your systems 5. do not trust public wifi better to connect to your mobile hotspot, hacker can sniff, interupt or steal your data. Trust me, i always doing this when i was young 6. due due diligence while visiting / register on a website
|
|
|
|
MetalGear
|
|
September 30, 2019, 12:32:31 PM |
|
I have been compiling a guide (for everyone and my team) on how to protect yourself from online scammers here: https://bitcointalk.org/index.php?topic=3415026.msg35714276#msg35714276And I am yet to find an definitive answer to how to protect yourself from DNS Hijacking. From my understanding, this type of hijack can happen either on your own machine (simple, if your machine is compromised), or from the website level (more sophisticated attack). Any ideas / tools / methods you use to detect / prevent such attacks? This is very helpful, especially everyone is at risk of being a victim of DNS hijack attacks. The effect of DNS hijack will be very severe because DNS requests are mostly unencrypted, and this creates a problem as well as room for intercepting requests by malicious attackers. Attackers will incorrectly resolve your queries and will eventually redirect you to malicious software and upon entering the site that will act as the original site you were looking for, every sensitive data you will input will be gathered by the attackers and might use it for their personal interest and put you at risk. It's a good thing that you gave all these infos for the knowledge of the mass.
|
|
|
|
Mike Mayor
|
|
October 01, 2019, 02:26:05 AM |
|
I have been compiling a guide (for everyone and my team) on how to protect yourself from online scammers here: https://bitcointalk.org/index.php?topic=3415026.msg35714276#msg35714276And I am yet to find an definitive answer to how to protect yourself from DNS Hijacking. From my understanding, this type of hijack can happen either on your own machine (simple, if your machine is compromised), or from the website level (more sophisticated attack). Any ideas / tools / methods you use to detect / prevent such attacks? I have already read your tagged post on this forum before and I agree with you pertaining the Trojans that attacked one's pc, infiltrate and hacked important datas stored in the PC. There was a very famous trojan mining software that enters your computer and mines cryptocurrency without you knowing, aside from that they are accessing your important information on your pc. The best way to protect yourself from that Trojan is to install Bit Defender on your computer. It is effective against Trojan. I have nod32 and it often completely blocks or asks me if I want to ignore and continue when I visit websites. Sometimes I ignore and continue since it is a false positive, but I am always very careful. I also use malware search and destroy. http://whoismydns.com/ will tell you what DNS you currently connected to. Here is my way to protect my laptop from any hacking activities, ofcourse my way not give any warranty your system will not injected atleast this is your first mitigation
1. Make sure we installed anti virus 2. Make sure firewall is on 3. Use private tab to visit fishy website 4. do not ever install any app, plugin to your systems 5. do not trust public wifi better to connect to your mobile hotspot, hacker can sniff, interupt or steal your data. Trust me, i always doing this when i was young 6. due due diligence while visiting / register on a website
You must use a VPN when you are connecting to public wifi and never log in to important sites while you are there just in case. You must also take care of where you plug your devices in as well. I was reading another member here talking about having a malicious program built into a phone charger. That is pretty scary. What if a hacker somehow managed to install programs into the usb chargers before they are sold so they can highjack the DNS and direct the traffic where ever they want to. Most commonly a DNS high jack will redirect you to sites with a lot of advertising on it or offers for downloads which are really just even more horrible viruses such as a rat. If they control your DNS they can direct the owners pc to a site and trick the owner into installing a rat. Then the hacker has remote control too. Scary....
|
|
|
|
ivakar
|
|
October 01, 2019, 05:25:44 AM |
|
Here is my way to protect my laptop from any hacking activities, ofcourse my way not give any warranty your system will not injected atleast this is your first mitigation
1. Make sure we installed anti virus 2. Make sure firewall is on 3. Use private tab to visit fishy website 4. do not ever install any app, plugin to your systems 5. do not trust public wifi better to connect to your mobile hotspot, hacker can sniff, interupt or steal your data. Trust me, i always doing this when i was young 6. due due diligence while visiting / register on a website
about #3 this will not protect your browser actually.. just won't store some info from that site on your pc (like cookies and so on) if you need to install some fresh wallet for new coin - first check it for virus total and the good idea is to run this wallet on virtual machine.. is sand box environment.. other topics are correct and should be used every day
|
|
|
|
romero121
Legendary
Offline
Activity: 3024
Merit: 1214
|
|
October 01, 2019, 05:44:13 AM |
|
Op in his other post has come up with a detailed information on, how to stay away from scammers. Now his effort to make users not get caught into DNS hijack is a good try. DNS hijack can be confirmed when an application used gets redirected to a browser. This can be sought by the native tools available. If not going through the device manager can find additional drivers getting added. If there is something likewise you get the access to disable it. Further on restart the issue won't be there anymore.
|
|
|
|
Mike Mayor
|
|
October 03, 2019, 10:05:17 AM |
|
Op in his other post has come up with a detailed information on, how to stay away from scammers. Now his effort to make users not get caught into DNS hijack is a good try. DNS hijack can be confirmed when an application used gets redirected to a browser. This can be sought by the native tools available. If not going through the device manager can find additional drivers getting added. If there is something likewise you get the access to disable it. Further on restart the issue won't be there anymore.
Wait, what!? Did you just say drivers? How are additional drivers added and why? Are you sure about that? If that's true thats scary as hell. I can't think of anything that having drivers would succeed at doing. How would the attacker get permission to install the drivers first of all? What drivers would it be? network card? Wifi? As far as I know, the DNS is the server you connected to and can be an ad server. When you use apps with ads from the google store you connect to a DNS for ads. It is for targetted advertising.
|
|
|
|
|