recently found that adobe.com, internet.com, nike.com, and so well-known sites are divided by the attack, but the technology is not used by the attacker used before the invasion of the WEB server, means change the home page, the attacker uses a domain name hijacking attack? The attacker by posing as the original owner of the domain name in E-MAIL to modify the network solutions company domain name registration records, the transfer of the domain name to another group, the registered information is modified in the specified DNS server to the domain name server record, let the original domain to another IP, usually the two servers are the attacker in advance intrusion control server, the attacker does not belong to own.
that the attacker in the end is how to implement the domain name hijacking attack?
1 gets the domain name registration information to be hijacked
, an attacker would first access network solution provided by www.networksolutions.com company, the company’s home page of the MAKE CHANGES function, input to query the domain name, the domain name registration information in the case of abc.com, we will get the following information:
Capital Cities/ABC, Inc (ABC10-DOM)
New York, NY 10023
Domain Name: ABC.COM
Administrative Contact, Billing Contact:
King Thomas C. (SC3123-ORG) [email protected]
77 W 66th St.
New York, NY />US
Technical Contact, Zone Contact:
Domain Administrator (DA4894-ORG) [email protected]
13810 SE Eastgate Way ste.
Bellevue, 400, WA>