- Wednesday, 25 November 2009
- INQ Mobile
- RSS
The problem with political jokes is they get elected - Henry Cote
IANA and ICANN domains get hijacked
NEWS SURFACED late Friday that four domains owned by IANA and ICANN had been briefly redirected.
Instead of reaching the official websites of iana.com, iana-servers.com, icann.com, and icann.net, web requests were hijacked to a web page apparently put up by the miscreants responsible for hijacking them.
According to a screen capture saved by the website defacement researchers at Zone-H, the domain hijackers calling themselves "NeTDevilz" (sic) boasted in slightly fractured English:
"You think that you control the domains but you don't! Everybody knows wrong. We control the domains including ICANN! Don't you believe us? haha :) (Lovable Turkish hackers group)".
In an ironic, incongruous appeal to international legal standards, given what they'd done, they even copyrighted their hijacking webpage with their name and the motto, which fairly reeks of immature adolescent testosterone, "We're not the first,But We're the Best" (sic).
The Internet Assigned Numbers Authority (IANA) controls Domain Name Server (DNS) root servers' addresses and Internet Protocol (IP) ports addressing worldwide.
The International Corporation for Assigned Names and Numbers (ICANN) supervises the assignment of Top Level Domains (TLDs) such as .com, .gov, .net and .org to particular types of websites, the distribution of country code TLDs to particular geographical areas and, through those, the registration of Internet domain names to specific addresses.
Together, they are the primary international authorities responsible for governing the global structure of all public Internet addressing and the services available over the web. They define the very fabric of the Internet.
A post at the SANS Internet Storm Center points to an entry about the incident at Dancho Danchev's blog showing that domain name registrant ICANN's principal email address at REGISTER.COM, INC. was updated to "foricann1230@gmail.com" sometime on Thursday.
The IANA and ICANN domains' redirection reportedly lasted for only about 20 minutes, but because of the distributed structure of the global DNS system it might have taken up to 48 hours for the restored DNS entries to have been repropagated around the world.
Zone-H said, "We reached the defacers by e-mail but they refused to tell us how they changed the DNS records, however a cross-site scripting or cross-site request forgery vulnerability might have been exploited."
If this sort of rank insult can be dealt to IANA and ICANN, obviously such DNS damage can be inflicted upon anyone. IANA and ICANN apparently still have some serious DNS system security work cut out for them. ยต
Share this:
ShareBusiness Intelligence Software
Customer Relationship Management (CRM)
Enterprise Accounting Software
Enterprise Resource Planning (ERP)
Enterprise Systems Management
Have you checked your own comment section recently ? These NetDevilZ write better English than half your posters !

I welcome our new almost-gramatically-unchallenged Net Overlords.
How reassuring that IANA and ICANN are using Linux, the amateur's version of an operating system from the late 60's. Hey, why not switch to MS-DoS Windows?

http://tinyurl.com/68pz8r
Next week they redirect www.update.microsoft.com to a hacker site and as half the planet automatically update their windows (without their consent), they go dark as their windows stop booting.

As the only one not affected would be thoses doing torrents that disabled their windows update, Comcast turn it's internet service OFF because there is no legitimate business to be done there.

You think it's not doable ?
(that's exactly what they want to justify what's coming...)