Extract from Ryan Smith’s article “Legal IT Professionals: Beware the Seven Deadly Vulnerabilities of Domain Names”
Halloween is a time for scary things, but what’s scarier than undetected security risks lurking that can wreak havoc on your organization? Legal IT professionals, and anyone whose job intersects with domains, need to know about the seven deadly vulnerabilities of domain names. If ignored, these pitfalls can cause severe damage and increase risks of bad actors interfering with the law firm’s or company’s domains. These issues can not only happen separately, but bad actors can perpetrate several simultaneously, too. Scared yet? Be not afraid—read on to find out more about these trouble spots and how to detect, prevent and solve them.
The Seven Deadly Vulnerabilities of Domain Name Servers
1. Lame Delegation and ‘Sitting Ducks’
If the domain name server currently associated with a particular domain is not configured correctly, or has insufficient data about the domain, the domain delegation is considered “lame.” Lame means that the domain registry has incorrect data about which name servers are authoritative for the domain.
A company may own a domain name, but they must properly configure the DNS (domain name system), which translates domain names into IP addresses.