News broke yesterday that thousands of UK companies were at risk of having their .uk domain names stolen for more than four months by a critical security failure at domain registrar Enom. The security lapse allowed .uk domains to be transferred between Enom accounts with no verification, authorisation or logs.Any domains hijacked would have been “extremely hard or impossible” to recover, according to The M Group, the security firm that discovered the flaw. Kyle Wilhoit, Senior Cybersecurity threat Researcher at DomainTools commented below.
Kyle Wilhoit, Senior Cybersecurity Threat Researcher at DomainTools:
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.