Monday, December 8, 2008

CheckFree Attack Caused By Compromised Network Solutions Credentials

Check out this Security Fix blog post by Brian Krebs regarding the CheckFree compromise. CheckFree's Network Solutions account was compromised, allowing their web site traffic to be redirected to servers in the Ukraine designed to install software to steal passwords.

It is scary to think that, even with secured perimeters, intrusion detection, and the like, there is always a weak link in the chain.

I wonder if Network Solutions, and other domain registrars are considering some other method of authentication, like two-form authentication tokens?

Digging Deeper Into the CheckFree Attack

No comments: