"KeyTrap DNS Attack Disrupts Internet Access with Single Packet"
A serious vulnerability named KeyTrap in the DNSSEC feature of the Domain Name System (DNS) could be exploited to cause long-lasting denial-of-service (DoS) conditions in vulnerable resolvers by sending a single DNS packet, potentially disrupting internet access for applications. The flaw, present for over two decades, was discovered by researchers and impacts widely used DNS implementations. Mitigations have been developed by companies like Akamai, Google, and Cloudflare to address the issue, but addressing the problem at a fundamental level may require a reevaluation of the DNSSEC design philosophy.