Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss
[Web Feed] On 12 February 2021, Cyberis identified a weakness in the domain transfer pro...
1 view
Skip to first unread message
Feed Supplier
May 7, 2021, 3:14:30 PM5/7/21
to
..cesses of Gandi which allowed any Nominet registry domain (incl
On 12 February 2021, Cyberis identified a weakness in the domain transfer processes of Gandi which allowed any Nominet registry domain (including .co.uk and org.uk domains) registered with Gandi to be transferred out of the owner’s control and into the control of an arbitrary AWS Route 53 account, without any authorisation being provided by the owner of the domain. Exploitation of this weakness did not result in the registrant details being modified in the Nominet registry, but once an adversary has taken control of a domain they are likely to be able to satisfy the checks in place that would subsequently allow ownership details to be updated.
Cyberis reported this weakness to AWS on 12 February 2021, who engaged Gandi on the same day. Transfer of the affected Nominet domains was disabled by Gandi on 12 February 2021 whilst the weakness was investigated.
On 15 February 2021, the root cause of the weakness was identified by the Gandi security team and a patch applied. Following testing, transfers of affected domains was re-enabled on 16 February 2021.
Link 1
Domain Hijacking Via Logic Error - Gandi and Route 53 Vulnerability | Cyberis Limited: https://www.cyberis.co.uk/blog/domain-hijacking.html
On 12 February 2021, Cyberis identified a weakness in the domain transfer processes of Gandi which allowed any Nominet registry domain (including .co.uk and org.uk domains) registered with Gandi to be transferred out of the owner’s control and into the control of an arbitrary AWS Route 53 account, without any authorisation being provided by the owner of the domain. Exploitation of this weakness did not result in the registrant details being modified in the Nominet registry, but once an adversary has taken control of a domain they are likely to be able to satisfy the checks in place that would subsequently allow ownership details to be updated.
Cyberis reported this weakness to AWS on 12 February 2021, who engaged Gandi on the same day. Transfer of the affected Nominet domains was disabled by Gandi on 12 February 2021 whilst the weakness was investigated.
On 15 February 2021, the root cause of the weakness was identified by the Gandi security team and a patch applied. Following testing, transfers of affected domains was re-enabled on 16 February 2021.
Link 1
Domain Hijacking Via Logic Error - Gandi and Route 53 Vulnerability | Cyberis Limited: https://www.cyberis.co.uk/blog/domain-hijacking.html
0 new messages