Experts On Hundreds Of Mega-corp Websites Hijacked

As reported by The Register, more than 240 website subdomains belonging to organizations large and small, including household names, were hijacked to redirect netizens to malware, X-rated material, online gambling, and other unexpected content.

These big names are said to include Chevron, the Red Cross, UNESCO, 3M, Getty Images, Hawaiian Airlines, Arm, Warner Brothers, Honeywell, Autodesk, Toshiba, Xerox, the NHS, Siemens, Volvo, Clear Channel, Total, and more. And it’s all due to the way they were hosted in Microsoft’s Azure cloud.

Experts Comments

July 07, 2020
Jake Moore
Cybersecurity Specialist
ESET
Leaving domains vacant after any sort of use is a typical slip up by the site owners but this may hopefully highlight the need for extra support by Azure and alike. Losing control to subdomains may seem like a low impact threat but it can leave damaging consequences, for example when in phishing emails. It can also lose the faith of customers, who see this as an easy issue to fix. If you see any phishing emails with downloadable attachments from links to any of these firms, it is.....Read More
Leaving domains vacant after any sort of use is a typical slip up by the site owners but this may hopefully highlight the need for extra support by Azure and alike. Losing control to subdomains may seem like a low impact threat but it can leave damaging consequences, for example when in phishing emails. It can also lose the faith of customers, who see this as an easy issue to fix. If you see any phishing emails with downloadable attachments from links to any of these firms, it is recommended to avoid them and go via the genuine sites if needed.  Read Less
What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.