Jump to content

NetNames: Difference between revisions

From ICANNWiki
Line 44: Line 44:


==Attack on NetNames DNS Servers==
==Attack on NetNames DNS Servers==
On September 4, 2011, the [[DNS]] Servers of NetNames were attacked by Turkish hackers, who redirected the traffic of websites including Acer, [[Adobe]], Coca-Cola, [[Dell]], Harvard University, Interpol, [[F-Secure]],  [[Microsoft]], Secunia, UPS, The Register,  The Daily Telegraph, and others. One source notes that around 186 sites were affected,<ref>[http://www.eweek.com/c/a/Security/Attack-on-NetNames-DNS-Servers-Shifts-Web-Traffic-Away-From-Major-Web-Sites-199106/ Secuirty Attack on NetNames DNS Servers Shifts Web Traffic Away From Major Sites, eWeek.com]</ref> though NetNames' own press release pegs it as "a very small number".<ref>[http://www.netnames.co.uk/resources/news/2011/netnames-dns-security-update NetNames DNS Security Update, NetNames.co.uk]</ref><ref>[<ref>[http://www.zone-h.org/archive/notifier=Turkguvenligi.info/page=1 Zone-H]</ref> The culprits redirected the sites to a black page with the message, '''"Hacking is not a crime…We TurkGuvengligi declare this day as World Hackers Day – Have fun."'''<REF>[http://nakedsecurity.sophos.com/2011/09/04/dns-hack-hits-popular-websites-telegraph-register-ups-etc/ DNS hack hits popular websites: Daily Telegraph, The Register, UPS, etc]</ref>
On September 4, 2011, the [[DNS]] Servers of NetNames were attacked by Turkish hackers, who redirected the traffic of websites including Acer, [[Adobe]], Coca-Cola, [[Dell]], Harvard University, Interpol, [[F-Secure]],  [[Microsoft]], Secunia, UPS, The Register,  The Daily Telegraph, and others. One source notes that around 186 sites were affected,<ref>[http://www.eweek.com/c/a/Security/Attack-on-NetNames-DNS-Servers-Shifts-Web-Traffic-Away-From-Major-Web-Sites-199106/ Secuirty Attack on NetNames DNS Servers Shifts Web Traffic Away From Major Sites, eWeek.com]</ref> though NetNames' own press release pegs it as "a very small number".<ref>[http://www.netnames.co.uk/resources/news/2011/netnames-dns-security-update NetNames DNS Security Update, NetNames.co.uk]</ref><ref>[http://www.zone-h.org/archive/notifier=Turkguvenligi.info/page=1 Zone-H]</ref> The culprits redirected the sites to a black page with the message, '''"Hacking is not a crime…We TurkGuvengligi declare this day as World Hackers Day – Have fun."'''<REF>[http://nakedsecurity.sophos.com/2011/09/04/dns-hack-hits-popular-websites-telegraph-register-ups-etc/ DNS hack hits popular websites: Daily Telegraph, The Register, UPS, etc]</ref>


According to NetNames, the hackers used SQL injection and were able to get access to certain information allowing them to submit a  re-delegation order to the NetNames System to change the address of the master DNS servers. This enabled the affected name servers to serve incorrect DNS data and redirected the web traffics to the hacker's Turkguvenligi page. NetNames resolved the issues after a few hours and the company disabled one account that had been compromised by the attack.<ref>[http://www.netnames.co.uk/resources/news/2011/netnames-dns-security-update NetNames DNS Security Update]</ref><ref>[http://www.eweek.com/c/a/Security/Attack-on-NetNames-DNS-Servers-Shifts-Web-Traffic-Away-From-Major-Web-Sites-199106/ Attack on NetNames DNS Servers Shifts Web Traffic Away From Major Websites]</ref>
According to NetNames, the hackers used SQL injection and were able to get access to certain information allowing them to submit a  re-delegation order to the NetNames System to change the address of the master DNS servers. This enabled the affected name servers to serve incorrect DNS data and redirected the web traffics to the hacker's Turkguvenligi page. NetNames resolved the issues after a few hours and the company disabled one account that had been compromised by the attack.<ref>[http://www.netnames.co.uk/resources/news/2011/netnames-dns-security-update NetNames DNS Security Update]</ref><ref>[http://www.eweek.com/c/a/Security/Attack-on-NetNames-DNS-Servers-Shifts-Web-Traffic-Away-From-Major-Web-Sites-199106/ Attack on NetNames DNS Servers Shifts Web Traffic Away From Major Websites]</ref>

Revision as of 19:34, 27 January 2012

Type: Subsidiary of Group NBT Limited
Industry: Internet
Founded: 2009
Founder(s): Group NBT
Headquarters: Prospero House 241 Borough High Street

London, SE1 1GA

Country: UK
Website: www.netnames.com
Blog: NetNames Blog
LinkedIn: Netnames
Twitter: @NetNames
Key People
Gary McIlraith, CEO

NetNames is an ICANN accredited registrar and a subsidiary of Group NBT, which provides domain name management, online brand protection, online security, anti-piracy and acquisitions services. The company is based in London and maintains offices in different locations including Cambridge, Copenhagen, Munich, New York, Nice, Oslo, Paris, Stockholm, Strasbourg and Zurich.

In 2007, NetNames acquired Ascio Technologies and Envisional while INDOM was acquired in 2010. These acquisitions made the company into one of the largest domain name management and online brand protection specialists in Europe.[1]

In late 2011 the company was acquired by private equity firm HgCapital Plc and delisted from the AIM.

Services

  • Domain Name Management- The company provides registration services for gTLDs, ccTLDs and IDNs, buys and sells domain names, facilitates registrant changes, domain auditing and strategic analysis of portfolio as well as application and outsource management for .brand gTLDs. The company also offers account management services such as invoicing, DNS hosting, domain renewals and other services.
  • Brand Protection- NetNames offers anti-counterfeiting services, brand infringement services and reputation monitoring services. In 2009, the company introduced ImageFlare, a new service intended for companies to protect their trademark and logo online.[2]
  • Anti-Piracy-The company provides automatic anti-piracy monitoring and enforcement services by conducting thorough investigations of websites, individuals and organizations as well as the revenue generated from pirated products. The company also provided strategic advice on how companies can resolve their piracy problems.
  • NetNames Security- The company provides online security tools such as SSL Certificates, Trust Seals and DNS Security.

ICANN Involvement

NetNames is active in ICANN. Some of its latest participation was during ICANN's global consultation outreach for the the implementation of the new gTLD program held in London on July 15, 2009.[3] The company also provided comments on the issue of Trademark Protection for new gTLDs in response to the IRT Report. The following comments were submitted to the ICANN forum:[4]

  • NetNames recognized the importance of the IP Clearinghouse to protect the rights of new TLDs and it agreed to the idea that the services should be technically state-of-the-art and support open communication standards. The company suggested that the IP Clearinghouse should be developed through an open competition among service providers.
  • The proposal regarding the Globally Protected Marks List needs a careful evaluation.
  • The IP Claims service is valuable.
  • NetNames accepted that the Uniform Rapid Suspension System (URS) is a feasible concept for a low-cost and rapid method to address problems on infringing domain registrations.
  • The post delegation dispute resolution mechanism is not necessary.
  • The company supported the IRT recommendation regarding the specific requirements for Whois and the expansion for the analysis of string confusion.

Attack on NetNames DNS Servers

On September 4, 2011, the DNS Servers of NetNames were attacked by Turkish hackers, who redirected the traffic of websites including Acer, Adobe, Coca-Cola, Dell, Harvard University, Interpol, F-Secure, Microsoft, Secunia, UPS, The Register, The Daily Telegraph, and others. One source notes that around 186 sites were affected,[5] though NetNames' own press release pegs it as "a very small number".[6][7] The culprits redirected the sites to a black page with the message, "Hacking is not a crime…We TurkGuvengligi declare this day as World Hackers Day – Have fun."[8]

According to NetNames, the hackers used SQL injection and were able to get access to certain information allowing them to submit a re-delegation order to the NetNames System to change the address of the master DNS servers. This enabled the affected name servers to serve incorrect DNS data and redirected the web traffics to the hacker's Turkguvenligi page. NetNames resolved the issues after a few hours and the company disabled one account that had been compromised by the attack.[9][10]

References