In what appears to be the largest single hacking of user account data, Yahoo announced that 1 billion user accounts have been hacked. The attack occurred in 2013 but Yahoo just now confirms it, stating that it involved pretty much every bit of information stored by the users. Sensitive user information, such as names, telephone […]Copyright © 2017 DomainGang.com · All Rights Reserved.
A team of Princeton students has developed PREDATOR, a tool that detects malicious domain names as soon as they get registered. Princeton University computer science professor Nick Feamster and Ph.D. student Shuang Hao have developed PREDATOR to identify and detect domain names used for nefarious purposes. PREDATOR is an acronym that stands for Proactive Recognition […]Copyright © 2017 DomainGang.com · All Rights Reserved.
DomainTools notified its customers that an email harvesting campaign utilized a flaw in the individual membership email update processes. The scripting attack did not compromise usernames and passwords, but tested email addresses against a large database of unrelated data dumps, obtained from LinkedIn, Dropbox or other sources. DomainTools has patched the flaw that allowed this […]Copyright © 2017 DomainGang.com · All Rights Reserved.
Uniregistry has sent out its monthly newsletter, for September 2016. This month, the progressive domain registrar founded by domain investor and entrepreneur, Frank Schilling, is focusing on domain security. Built from the ground up to eliminate outdated programming principles, and to ensure a secure base for managing domain names, Uniregistry wants its users to have […]Copyright © 2017 DomainGang.com · All Rights Reserved.
Russian cybercriminals hiding behind fake Chinese WHOIS have launched sophisticated phishing attacks. Targeting owners of major US bank accounts, the attacks involve the registration of domains resembling those of financial institutions; most of these domains are registered with Chinese domain registrars. Chase Bank is one such example we covered; Wells Fargo is another such incident. […]Copyright © 2017 DomainGang.com · All Rights Reserved.
Cybercrime, in the form of financial institution domain spoofing, has cost banks and consumers billions of dollars in 2015 alone. Dot .Bank, the managed, authorized gTLD to be used by Banks, is changing that fast. Hundreds of European banks are registering with dot .Bank, to ensure that their customers receive protection from unauthorized account transactions. […]Copyright © 2017 DomainGang.com · All Rights Reserved.
A persistent hacker gained access to domain power-seller Ali Zandi’s accounts, attempting to sell his premium domains. Far from being simply annoying, the criminal acts of the individual(s) involved caused monetary loss, and generated frustration, stress and plenty of wasted time. After more than 24 hours, Zandi reported that he has regained full control of […]Copyright © 2017 DomainGang.com · All Rights Reserved.
The email account of domain power-broker, Ali Zandi, was repeatedly hacked; Zandi himself reported the incident in a NamePros thread. What is more disturbing, is the fact that the cybercriminal involved in this brazen hacking attack, attempted to sell Zandi’s domain assets: “They tried to sell my domain names. I have multiple security features, so […]Copyright © 2017 DomainGang.com · All Rights Reserved.
Domain theft has become the so-called “hot potato” since early 2014; the proliferation of domain crime originating in China can be attributed to the high demand in short domains. With the Chinese stock market bubble finally bursting, we’re witnessing both a drop in domain crime from China, and a drop in domain prices for so-called […]Copyright © 2017 DomainGang.com · All Rights Reserved.
Paul Vixie, author of several RFC publications and an expert on DNS and security subjects, proposes a “cooling-off period” before new domains become active. In the early days of the commercial Internet, the DNS propagation mechanism would take up to 72 hours to enable a domain’s resolution as an active web site. Vixie’s concern, is […]Copyright © 2017 DomainGang.com · All Rights Reserved.
The most common method of having your domains stolen, is by surrendering your registrar credentials in a phishing attack. Simply explained, phishing works by prompting one to click a link that appears to take them to a casual destination, such as a domain registrar. Once there, the unsuspected victim provides their user name and password, […]Copyright © 2017 DomainGang.com · All Rights Reserved.