ICANN victim of Phishing Attack

[rockking1379]

Source: http://www.techworm.net/2014/12/icann-hacked.html

 

so ICANN (Internet Corporation for Assigned Names) was hacked following employee credentials being compromised via a well crafted phishing attack. how well crafted?

 

 

The specially crafted emails were sent to the employees of ICAAN were sent in such a way that they seem to have come from ICAAN domain itself.

 

not a good thing. data from the CZDS (Centralized Zone Data Service) was also compromised.

 

from ICANN:

 

 

The Centralized Zone Data System (czds.icann.org)
The attacker obtained administrative access to all files in the CZDS. This included copies of the zone files in the system, as well as information entered by users such as name, postal address, email address, fax and telephone numbers, username, and password. Although the passwords were stored as salted cryptographic hashes, we have deactivated all CZDS passwords as a precaution. Users may request a new password at czds.icann.org. We suggest that CZDS users take appropriate steps to protect any other online accounts for which they might have used the same username and/or password. ICANN is providing notices to the CZDS users whose personal information may have been compromised.

The ICANN GAC Wiki (gacweb.icann.org)
Public information, the members-only index page and one individual user’s profile page was viewed. No other non-public content was viewed.

Based on our investigation to date, we are not aware of any other systems that have been compromised, and we have confirmed that this attack does not impact any IANA-related systems.

 

not good, not good at all