Sign in / up

back to article Sea Turtle hackers head to the Mediterranean, snag Greece's TLD registrar as a souvenir

Miscreants notorious for hijacking traffic to victims' servers by changing their DNS records have been accused of hacking a top domain-name registrar in Greece. The team at Cisco Talos believes the Sea Turtle group was responsible for an April cyber-break-in at ICS-Forth, the company that manages the .gr top-level domain for …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. Pascal Monett Silver badge

    An interesting variation of the MITM attack

    And one where the target can have as much security on its local network as it can afford, it won't make any difference.

    So, if you're "worried about attacks", go ahead and add multi-factor authentication, but don't forget to phone your registrar and ask them what security they have against this.

    3 0 Reply
    1. Nick Kew
      Reply Icon

      Re: An interesting variation of the MITM attack

      This is precisely why we have cryptographic end-to-end security.

      And why we have certificate authorities for servers. And - indirectly - why CAs, as a single point of failure, are a weakness in today's security, and why we should be looking to improve things with Distributed Trust Authorities.

      2 0 Reply
      1. teknopaul
        Reply Icon

        Re: An interesting variation of the MITM attack

        Be your own CA for anything important.

        The list of CAs in your typical browser is a consumer rip off thats been run by the big boys so long no one dares address it.

        The underlying tech works.

        1 1 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like