Social engineering still alive and kicking
A social engineering attack resulted in secure e-mail service provider Hushmail having its Web site redirected to a defaced Web site. According to reports, Network Solutions, the domain name service provider behemoth, gave out information through a customer support line sufficient to allow an attacker to alter DNS record information for Hushmail.com. Visitors to the Hushmail site were instead sent to a server co-opted by the attacker. Network Solutions said it's implemented new security measures to ensure that such an "isolated event" doesn't happen again.
By Russ Cooper at MCP Magazine.
[ Read more ]