English
简体中文 繁體中文 English Español Tiếng Việt
 
China Yuan RMB U.S. Dollar Euro British Pound Canadian Dollars Australian Dollars Hong Kong Dollars Vietnamese Dong More Info
Email:support@eranet.com WhatsApp:+(852)68882160
logo

Net security firm Metasploit's DNS registrar hacked – by fax

  • Release time:2013-10-17

  • Browse:4441

  • Other People Are Reading

       The Overlooked Signals of ccTLDs

                                                                                                                                                                       

     

    A pro-Palestinian group of hackers calling themselves KDMS Team hacked the website of Metasploit, a leading net security firm, using a fax machine.

     

    The hack was a simple DNS redirect, which involves an attacker changing the records which tell web browsers what server lies behind any given web address.

     

    In this case, however, the redirect was carried out by faxing a faked redirect request to Register.com, Metasploit's registrar.

     

    "We are currently investigating the situation," says Rapid7, Metasploit's parent company, "but it looks like the domain was hijacked via a spoofed change request faxed to Register.com. We apologize for the service disruption, and do not anticipate any further implications for our users and customers at this time."

     

    It is the second major hack carried out by KDMS Team in the past week. On 8 October, the hackers performed a similar redirect on the websites of text messaging service WhatsApp, as well as security companies AVG and Avira.

     

    Those firms were registered with a different registrar, Network Solutions, which fell prey to a fake password reset request, according to a statement from Avira.

     

    Additionally, Bitdefender and ESET, two antivirus firms, were also hit with a DNS redirect. The method by which they were attacked remains unknown, but the sites are also registered with Register.com.

     

    The hack redirected the domains to a page which contained a message from KDMS Team, reading in part:

     

    You are one of our targets.

    Therefore we are here ..

    And there is another thing .. do you know Palestine ?

    There is a land called Palestine on the earth

    This land has been stolen by Zionist

    Do you know it ?

     

    Following the hijack, another hacker known as Th3 J35t3r – “The Jester” – pointed out that KDMS’ twitter feed initially followed just 16 accounts, including many which had been dormant for years.

     

    “Because of KDMS Team’s relatively new presence on Twitter, it is highly suspicious that it knows about, and follows, accounts that have not been active or tweeted for 6 months to over 3 years,” the Jester said.

     

    Following that trail, the hacker claims to have identified the real people behind the KDMS team, and even identified the Facebook page of one member.

     

    KDMS team no longer follows anyone on Twitter.

     

    Eranet.com Link:  ICANN Accredits Registrar, Get one .cn domain at $17.96/yr with free DNS here   


    Domain names have the lowest price:

    .cn.com  only USD 1.99/year

    .pw        only USD  1.99/year

    .com    only  USD  9.99/year

    .cn       only   USD 17.96/year

    .asia     only  USD  19.99/year

    .hk       only   USD 28/year      

     

    hk domain & cn domain hot sale!

     

    Be our Reseller, you can enjoy the price for .cn domain at $5.7/yr ,EPP &API are available


     

Search

Document

Product Recommendation

    •