By Chandu Gopalakrishnan | SC Magazine UK
Top internet domain name registrars NetworkSolutions.com, Register.com and Web.com have confirmed that they were hacked
Top internet domain name registrars NetworkSolutions.com, Register.com and Web.com have confirmed that they were hacked. They have asked their customers to reset their passwords.
Network Solutions, the world’s first internet domain provider, is owned by Web.com. All three shared the same disclosure notice, with just the company name changed.
“On October 16, 2019, Network Solutions determined that a third-party gained unauthorised access to a limited number of our computer systems in late August 2019, and as a result, account information may have been accessed. No credit card data was compromised as a result of this incident,” the disclosure said.
Data suspected to be accessed by the hackers include account information of current and former customers – name, address, phone numbers, email address and information about the services bought.
Third party data breaches are all too common for businesses, but most of them are preventable, John Handelaar, VP EMEA at Gurucul said in a press statement sent to SC Media UK.
He adds, “Too often, vendors and partners are granted too many rights to too many systems, thus resulting in incidents like these. Companies should only allow third-party access within their networks to what is required to accomplish their tasks and nothing more,” he said.
The dwell time between attack and detection was good in this case, observed Dan Pitman, principal security architect at Alert Logic.
In company announcement he said: “We have taken additional steps to secure your account, and you will be required to reset your password the next time you log in to your Network Solutions account. As with any online service or platform, it is also good security practice to change your password often and use a unique password for each service.”
“Hashed passwords that aren’t “strong” enough, and can be brute forced to reveal the original password. Web.com password requirements are 13 characters which means that any hashed password would take too long to brute force. It’s not clear if this was a change in response to the breach, though,” said Pitman.
“Ultimately, anyone creating a password on a site that contains sensitive information like credit card data needs to use a long password and the recommendation is to make this a memorable phrase and, have a set of different passwords used on sites based on how sensitive or personal the information they hold is, or use a password manager to generate unique passwords for each site,” he added.
“Behaviour-based security analytics solutions would spot unusual and suspicious behaviour performed by any user and allow the businesses to quickly identify and remediate threats while searching for the compromised account(s) or machines,” commented Handelaar.
“With the increasing pace of development, bugs are inevitably going to exist and will be exploited unless found and disclosed before they can cause a breach,” said Prash Somaiya, technical programme manager, HackerOne.
“While customers place trust in companies to keep their data secure, I’d recommend they also take precautionary steps to secure their data regardless of whether or not they think they’ve been affected (by such incidents) to avoid any nasty surprise years down the line.”
External Link: World’s First TLD among Registrars Hacked