FireEye's story about an ongoing global DNS hijacking campaign has gotten people everywhere screaming for . Not surprising as the purpose of DNSSEC is to protect DNS lookups against hijacking attempts.

However, DNSSEC won't protect you from an attacker who compromises your login credentials with your DNS provider. Attackers are not hijacking DNS lookups, they are compromising DNS provider accounts and modifying DNS records.

Too bad Google is killing off HPKP..

Sign in to participate in the conversation

Long live the revolution!
Have a nice day.