Thursday, October 11, 2012

Find: Security breach briefly hijacks connections to and

Security breach briefly hijacks connections to and

The outfit that manages Internet addresses for Ireland’s national .ie domain has temporarily taken some of its systems offline while officials investigate a security breach that temporarily hijacked the Irish websites for Google and Yahoo.

A short note on the homepage of the IE Domain Registry said the move followed a "security incident on Tuesday 9th October, involving two high profile .ie domains that has warranted further investigation and some precautionary actions on the part of the IEDR." Several independent Web posts, including those on Twitter and the site of a .ie domain registrar (Google cache here) identified the sites as and People trying to visit those addresses were briefly redirected to a fraudulent server as a result of "unauthorised access to one Registrar's account which resulted in the change to the DNS nameserver records for the two .ie domains," the latter blog post reported, citing IEDR CEO David Curtin.

Both of the affected sites, according to whois records, are managed by MarkMonitor, a company that protects the online brands of its customers. Sophos security expert Graham Cluley reported that the breach caused the IEDR to incorrectly point users to domain name system name servers at, which appear to be located in Indonesia.

No comments:

Post a Comment