• Martin Thoma
  • Home
  • Categories
  • Tags
  • Archives
  • Support me

Abandoned domains are a security issue

Contents

  • Historic Cases

Failing to register the correct domain or failing to renew a domain is a massive security issue.

I'm writing this as one company I use just has this. I've just bought their domain and redirect here.

If I was an attacker, I could get the usernames and passwords of all people who login over that domain ... potentially forever, if I make a redirect.

If you belong to that mobile carrier: Please contact me ([email protected]) to discuss further steps.

Historic Cases

  • The guy who bought Google.com from under Google's nose by Chris Isidore @CNNTech: Google paid $12,000 USD. See How I Ended Up Purchasing & Owning Google.com via Google Domains by Sanmay Ved. And that was a lucky case back in 2016.
  • Why abandoned domain names are dangerous for your business?

Published

Sep 30, 2018
by Martin Thoma

Category

German posts

Tags

  • Security 20

Contact

  • Martin Thoma - A blog about Code, the Web and Cyberculture
  • E-mail subscription
  • RSS-Feed
  • Privacy/Datenschutzerklärung
  • Impressum
  • Powered by Pelican. Theme: Elegant by Talha Mansoor