The Internet Corporation for Assigned Names and Numbers (ICANN) recently acknowledged that it was hit in late November 2014 by a spear phishing attack, which targeted ICANN staff members with emails that appeared to come from an icann.org address.
The phishing attack successfully compromised several ICANN staff members’ email credentials, which were then used to breach other ICANN systems, including the Centralized Zone Data System (CZDS), the ICANN Governmental Advisory Committee (GAC) Wiki, the ICANN Blog, and the ICANN WHOIS information portal.
Most importantly, the attacker gained administrative access to all files in the CZDS, including copies of the zone files in the system as well as users’ names, mailing addresses, email addresses, fax numbers, phone numbers, user names and hashed passwords.
Read the Full Article: Source – eSecurity Planet
http://www.esecurityplanet.com/network-security/icann-hacked.html
Leave a Reply
You must be logged in to post a comment.