Google domain hijacked in Kenya
Google’s Kenyan web site was reportedly inaccessible yesterday due to a hijacking of the company’s local domain name.
Google.co.ke briefly redirected users to a site bearing the slogan “hacked” on a black background, according to the Daily Nation. A change of DNS was blamed.
Google Kenya reportedly said:
Google services in Kenya were not hacked. For a short period, some users visiting www.google.co.ke and a few other website were re-directed to a different website. We are in contact with the organisation responsible for managing domain names in Kenya.
Google is of course a high-profile target; hackers often exploit weaknesses at third-party providers such as domain name registries in order to take down its satellite sites.
Its Irish site was taken down in October last year, after attackers broke in through a vulnerability in IEDR’s Joomla content management system.
If you find this post or this blog useful or interestjng, please support Domain Incite, the independent source of news, analysis and opinion for the domain name industry and ICANN community.
.IE
.PK
.GP
.RO
.KE
Next…….. ?
Before our turn we made two factor authentication available hoping that people turn it on and prevent credentials-based attacks.
I like the two factor authentication Rubens, good to read you guys offer it. I would use it and if the majority of registries would use it would. it be alot more secure. Some do, but they are a minority.
A reset of username and password every month is not a bad also.
Two-factor auth is more on the registrar side than on registry side. .br is vertically integrated as most of the ccTLDs are, so on the gTLD world the ones to lead 2FA are GoDaddy, eNom etc.
More on this:
http://beijing46.icann.org/meetings/beijing2013/presentation-registrant-credentials-security-br-neves-08apr13-en.pdf