http://www.cyberdefensemagazine.com/icann-urges-passwords-reset-due-an-external-service-provider-breach/


ICANN urges passwords reset due an external service provider breach

*August 10, 2015*

*The ICANN has issued a warning to inform who registered with ICANN.org
that their profile accounts were accessed by an “unauthorized person.”*

The Internet Corporation for Assigned Names and Numbers (ICANN) has issued
another security warning after login credentials of the ICANN.org website
have been compromised.

A new incident occurred to the ICANN (Internet Corporation for Assigned
Names and Numbers), the organization that is responsible for the
coordination of maintenance and methodology of several databases of unique
identifiers related to the namespaces of the Internet. According to a security
warning <https://www.icann.org/news/announcement-2015-08-05-en> issued by
the ICANN intruders obtained usernames, email addresses, and password
hashes for the registered accounts on the website ICANN.org.

*“ICANN has reason to believe that within the last week, usernames/email
addresses and encrypted passwords for profile accounts created on
the ICANN.org public website were obtained by an unauthorized person. These
profile accounts contain user preferences for the website, public bios,
interests, newsletter subscriptions, etc. There is no evidence that any
profile accounts were accessed or that any internalICANN systems were
accessed without authorization. While investigations are ongoing, the
encrypted passwords appear to have been obtained as a result of
unauthorized access to an external service provider.” states the security
warning.*

The profiles compromised by the hackers include other information like
public bios, newsletter subscriptions and user preferences. According to
the ICANN, the passwords are hashed and are not easy to crack, the
organization also added that there is no evidence that the stolen data has
been used to access user profiles.

As part of the incident response procedure, the ICANN is urging the users
of the ICANN.org website to change their passwords
<https://www.icann.org/news/announcement-2015-08-05-en>. Users are invited
to modify the password by accessing the “forgot password
<https://www.icann.org/users/password/new>” page once they log in to
ICANN.org.

[image: Description: i1]
<http://www.cyberdefensemagazine.com/wp-content/uploads/2015/08/i1.jpg>

*“These encrypted passwords (hashes) are not easy to reverse, but as a
precaution we are requiring that all users reset their passwords. When you
next visit our site, please go to the login page and click the forgot
password link: **https://www.icann.org/users/password/new*
<https://www.icann.org/users/password/new>* – to create your new password.*

*Most importantly, if you have used the same password on other websites or
services, you should change it immediately on those other websites or
services. As a general matter, you should avoid reusing passwords across
multiple sites.” continues the warning.*

The investigation is ongoing, ICANN revealed that the data breach occurred
last week after the systems of an external service provider were
compromised. The ICANN confirmed that there is no indication that its own
systems have been breached.

*“No operational information, financial data or IANA systems were
involved,” ICANN reported.*

In December, the ICANN organization suffered another attack, the agency
confirmed that several its systems were compromised via a Spear Phishing
<http://securityaffairs.co/wordpress/32723/cyber-crime/defending-spear-phishing-rat-email-tracking.html>
attack
that allowed unknowns to access its network. The attackers spoofed the
ICANN domain, and deceived internal staff into revealing their email
credentials.

In February, the ICANN  shut down the new gTLD (generic top-level domain)
Applicant and GDD (Global Domains Division) portals
<http://www.securityweek.com/new-gtld-portals-taken-offline-icann-due-security-flaw>
to
fix a vulnerability that could have been exploited to access user data,
unfortunately such flaw had been exploited by hackers.




__._,_.___
------------------------------
Posted by: "Beowulf" <[email protected]>
------------------------------


Visit Your Group
<https://groups.yahoo.com/neo/groups/grendelreport/info;_ylc=X3oDMTJmZDJpam1oBF9TAzk3MzU5NzE0BGdycElkAzIwMTk0ODA2BGdycHNwSWQDMTcwNTMyMzY2NwRzZWMDdnRsBHNsawN2Z2hwBHN0aW1lAzE0MzkyNDQ1ODg->

   - New Members
   
<https://groups.yahoo.com/neo/groups/grendelreport/members/all;_ylc=X3oDMTJnbnNsb2V1BF9TAzk3MzU5NzE0BGdycElkAzIwMTk0ODA2BGdycHNwSWQDMTcwNTMyMzY2NwRzZWMDdnRsBHNsawN2bWJycwRzdGltZQMxNDM5MjQ0NTg4>
   1

[image: Yahoo! Groups]
<https://groups.yahoo.com/neo;_ylc=X3oDMTJlZWgwcDBlBF9TAzk3NDc2NTkwBGdycElkAzIwMTk0ODA2BGdycHNwSWQDMTcwNTMyMzY2NwRzZWMDZnRyBHNsawNnZnAEc3RpbWUDMTQzOTI0NDU4OA-->
• Privacy <https://info.yahoo.com/privacy/us/yahoo/groups/details.html> •
Unsubscribe <[email protected]?subject=Unsubscribe>
• Terms of Use <https://info.yahoo.com/legal/us/yahoo/utos/terms/>

__,_._,___

-- 
-- 
Thanks for being part of "PoliticalForum" at Google Groups.
For options & help see http://groups.google.com/group/PoliticalForum

* Visit our other community at http://www.PoliticalForum.com/  
* It's active and moderated. Register and vote in our polls. 
* Read the latest breaking news, and more.

--- 
You received this message because you are subscribed to the Google Groups 
"PoliticalForum" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to [email protected].
For more options, visit https://groups.google.com/d/optout.

Reply via email to