A social engineering attack resulted in secure e-mail service provider Hushmail having its Website redirected to a defaced site. According to reports, Network Solutions, the Domain Name Service provider behemoth, gave out information through a customer support line sufficient to allow an attacker to alter DNS record information for Hushmail.com.
Network Solutions spokeswoman Susan Wade confirmed that the breach occurred as a result of certain weaknesses in the registrar's customer-service security measures ... "We're seriously investigating the incident. We are aware that a hacker temporarily altered this customer's [DNS records]. Our security team promptly rectified the situation,"... She described the breach as an "isolated incident" and said Network Solutions would immediately institute "additional security measures to ensure it doesn't occur in the future... but we are taking this very, very seriously"
It appears that NetSol accept their responsability, whatever that's worth.
Msg#: 2788 posted 11:27 pm on May 18, 2005 (gmt 0)
As a past phreaker from Vancouver, this is just hilarious that the RCMP have become involved.
I'm not suggesting that the RCMP live up to the Dudley Do Right stereotype.. but they will be of absolutely no assistance to Hushmail. Canadian's are not going to be quick to jump to help anything that seemingly exposes 'Uncle Sam as Big Brother' antics, heresay or not.. besides, there's about 30,000 grow ops in BC to deal with, the Mounties have got better things to do than rectify some call center's dumb hiring choice.