back to article Sea Turtle hackers head to the Mediterranean, snag Greece's TLD registrar as a souvenir

Miscreants notorious for hijacking traffic to victims' servers by changing their DNS records have been accused of hacking a top domain-name registrar in Greece. The team at Cisco Talos believes the Sea Turtle group was responsible for an April cyber-break-in at ICS-Forth, the company that manages the .gr top-level domain for …

  1. Pascal Monett Silver badge

    An interesting variation of the MITM attack

    And one where the target can have as much security on its local network as it can afford, it won't make any difference.

    So, if you're "worried about attacks", go ahead and add multi-factor authentication, but don't forget to phone your registrar and ask them what security they have against this.

    1. Nick Kew

      Re: An interesting variation of the MITM attack

      This is precisely why we have cryptographic end-to-end security.

      And why we have certificate authorities for servers. And - indirectly - why CAs, as a single point of failure, are a weakness in today's security, and why we should be looking to improve things with Distributed Trust Authorities.

      1. teknopaul Silver badge

        Re: An interesting variation of the MITM attack

        Be your own CA for anything important.

        The list of CAs in your typical browser is a consumer rip off thats been run by the big boys so long no one dares address it.

        The underlying tech works.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021