Feeds

Sophos DNS snafu creates update problems

Bad hair day nothing to do with hackers

The Power of One eBook: Top reasons to choose HP BladeSystem

Domain name system problems left some users of Sophos unable to get security updates on Friday. The same issue, blamed on a mistake by one of the security firm's service providers rather than hostile action, left many surfers unable to access its main sophos.com website.

Graham Cluley, senior technology consultant at Sophos, explained that an error by one of its service providers in updating DNS settings for the Sophos.com site has permeated across the internet, and will take a little while to untangle. "Some users have experienced problems getting updates because of these incorrect settings," he explained. "No kind of DNS cache poisoning or any kind of hacking attack was involved."

DNS is the internet's address lookup system, which translates domain names humans are comfortable with into IP addresses that computers understand. Errors in the system make it difficult to reach sites as normal (without knowing or finding out the IP address, that is).

The Sophos.co.uk website was never affected by the problem. Staff have been able to send and receive email, and regular signature updates have been published as normal - even though some users may have had problems receiving these updates, a statement on Sophos's UK site explains.

We are aware that since yesterday {Thursday] a minority of our customers have been experiencing intermittent issues with accessing some parts of our website. In addition, some users may have experienced intermittent issues receiving anti-virus and anti-spam updates from Sophos.

This was because the sophos.com domain was not being resolved properly in some parts of the world as a result of an error made by an external domain management service provider. This error has now been corrected by the provider, but because of the nature of the internet it takes some time for the fix to permeate throughout the entire internet.

A number of Reg readers hit by the problem were the first to bring it to our attention. "Looks like Sophos are having big network issues," Reg reader Martin H reported. "The Web site has been flakey for most of yesterday and I for one haven't had any AV updates for over 24 hours."

Another Reg reader, Juan K, reported similar problems involving "clients who can't update their Sophos AV software this [Friday] morning".

Sophos apologised for any inconvenience, adding it was in talks with its service providers on how to prevent a repetition of the problem in future. ®

Designing a Defense for Mobile Applications

More from The Register

next story
DARPA-derived secure microkernel goes open source tomorrow
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
Four fake Google haxbots hit YOUR WEBSITE every day
Goog the perfect ruse to slip into SEO orfice
prev story

Whitepapers

Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.