News

ICANN publicity may have triggered malicious behavior

By Tim Conneally | Published June 27, 2008, 1:36 PM

On a week when ICANN's decisions were headlining hundreds of tech news sites, several of the group's pages were defaced by a group of hackers, and a phishing scam spoofing the group's page hit inboxes across the country.

Yesterday, a Turkish group known as "NetDevilz" -- which is linked to a reported 31 perpetrated attacks just this year, as tracked by site Zone-H -- hijacked icann.com, icann.net, iana.com, and iana-servers.com, all sites belonging to the Internet Corporation for Assigned Names and Numbers (ICANN) and the Internet Assigned Numbers Authority (IANA).

The defacement replaced pages' contents with the group's name, and the message "You think that you control the domains but you don't! Everybody knows wrong. We control the domains including ICANN! Don't you believe us? haha :) (Lovable Turkish hackers group)."

The phishing attack was launched several days before ICANN's site was defaced and targeted domain name owners. The e-mails that were sent contained the following text:

>Dear Domain Account Holder, > >You are being sent this notice from ICANN due to the fact that you >currently own an active domain name. ICANN is currently upgrading all >domains from their registry database. > >The upgrade will introduce new control options for your domain and easier >access. The new upgrade is required by the registry. All domain users are >expected to submit their domain information manually at >http://www.icannresolve.com/[spoofed site name removed] with the >required information for ICANN to apply the required updates. > >The upgrades will be applied to accounts on a first come, first serve >basis. You have until July 25, 2008 to submit the required information to >avoid service and domain interruption. > >Thank you for your time. > >Sincerely, > >ICANNResolve >ICANN.org Resolutions Department

The spoofed site, which has since been removed, was a faithful representation of the pre-hack ICANN page design, with blank fields for all harvestable user information.

Comments

View comments by with a score of at least

partypop
Jun 30, 2008 - 10:03 AM

Its a shame that people who speak English as a second language can deface and hack our sites and take control of our airplanes. We are obviously doing something wrong.
When are people going to realize the "America is untouchable attitude" is not working.
The proof is in the firewall and protection. Lets gets with the program people.

Score: 0

|
Post Reply
daq
Jun 30, 2008 - 2:34 PM

TAKE OFF THE TIN HAT!

Score: 0

|
Post Reply

Mark Russinovich on MinWin, the new core of Windows

The next version of Windows three years hence will likely build onto a significant architectural change implemented in Windows 7 and Server 2008 R2.

Security firm: Windows patches not responsible for 'Black Screen of Death'

On second thought, maybe that access control list thingie with the lockdown something-or-rather didn't trigger an alleged, perhaps non-existent, pandemic.

My Windows 7 confession (and why you should confess, too)

I've held back the real reason for sticking with Windows 7, even as, gulp, iLife calls me to go back to the Mac.

Apple settles with Psystar except for 'circumvention devices'

The fracas with the Florida clone computer maker might have ended today had Apple not have muddled the issue over a cheap piece of Psystar software.

Google begrudgingly adjusts news crawling for paid publishers

If publishers want to make readers pay for news content, and thereby drive down its popularity and Google ranking, the company says, they can just go right on ahead.

Fee or free? Murdoch, Huffington square off over the cost of Internet news

Participants in an FTC workshop yesterday witnessed the two extremes of the Web news publishing debate, still centered on the issue of long-term profitability.

Microsoft denies latest 'Black Screen of Death' claims

After an anti-malware producer announced a fix to what it says is a swarm of recent KSoD problems, evidence of the swarm itself has yet to turn up.

Latest Firefox 3.6 beta fixes 133 bugs, promises faster page load times

A once-sluggish beta testing process has kicked into overdrive, with astonishing success at finding serious bugs. Will Mozilla be able to fix all the others in time?

Confirmed: Office 2010 to ship in June

Two weeks after Microsoft had been expected to draw a clearer roadmap for its principal applications suite, it's finally ready to commit to the end of H1.

New EU antitrust commissioner will oversee Microsoft, Oracle+Sun, Intel issues

As one of Europe's most prominent politicians shifts positions in January, her replacement remains a question mark over technology's biggest issues.

Without its own 'iTablet' yet, is Apple missing the boat?

Steve Jobs is on record as dissing "single-purpose" devices like e-readers. But given their recent popularity, was that a mistake?