Site Map  |  Site Index  |  Quick Links

Select A Link Below About ICANN Accountability and Review Accountability and Transparency Address Supporting Organization (ASO) Affirmation of Commitments Affirmation of Commitments-Reviews Announcements Annual Report Articles of Incorporation At-Large Advisory Committee (ALAC) Blog Board Meeting Minutes Board of Directors Budget Bylaws Calendar of Events Careers Certificate Authority Code of Conduct Committees - Other Committees - Advisory Committees - Board Committees - Past Contact Information Continuity Contracts Contractual Compliance Newsletter Contractual Compliance Program Corporate Documents Correspondence Country Code TLD Managers - Information for Country-Code Names Supporting Organization (ccNSO) Country-Code Top-Level Domain Agreements Country-Code Top-Level Domain Board Materials Country-Code Top-Level Domain Listings DNSSEC Dashboard Dispute Resolution Options Documentary Information Disclosure Policy Documents Domain Name Dispute Resolution Policies E-Learning Expedited Registry Security Request Process Factsheets Fellowship Program Financial Information First-Time Visitors Former Directors Frequently Asked Questions GNSO Improvements Generic Names Supporting Organization (GNSO) Generic Top-Level Domain (gTLD) Program Generic Top-Level Domain (gTLDs) Life Cycle Generic Top-Level Domain Information (gTLDs) Global Partnerships Glossary Governmental Advisory Committee IANA Agreement IANA ccTLD Reports IANA ICANN Info ICANN Organizational Reviews ICANN in the News IDN Glossary IDN ccTLD Fast Track Process IPv6 Policy In Focus Independent Review Proceeding Documents InterNIC Internal Procedure for Conflicts with Privacy Law Internationalized Domain Names Links Litigation Documents Major Agreements Meetings for the Next Decade Consultation Meetings Mission Monthly Magazine Monthly Registry Reports News Newsletters & News Alerts Newsletters Archive Nominating Committee Ombudsman Operating Plan Organizational Chart PGP Keys Participate in ICANN Partnership Memorandums of Understanding Payments to ICANN Photos Planning Process Policy Area Policy Issue Briefs Policy Update Presentations President and CEO President's Strategy Committee Press Resources Public Comment Publications RSS Feeds Reconsideration Requests Registrants Information Registrar Accreditation Agreement Amendments Registrar Accreditation Overview Registrar Advisories Registrar Agreements Registrar Complaints Registrar Data Escrow Program Registrar Information Registrar Problem - Get Help Registrars - Accredited Registry Agreements Registry Information Registry Listings Registry Monthly Reports Registry Services Evaluation Process Report Inaccurate Whois Information Resources Root Server System Advisory Committee (RSSAC) Security Group Security and Stability Advisory Committee (SSAC) Speeches Sponsored Top-Level Domains Staff Strategic Plan Supporting Organizations Transfers Transparency Travel Support Universal Acceptance of All Top-Level Domains Video Vint Cerf's Legacy Letter to ICANN Community Website Enhancement Whois Information Whois Search

  Search

• Home
• About
• News
• Policy
• In Focus
• Meetings
• Resources
• Documents
• Press Room
• Careers
• Contact

^ Home

> News

العربية

中文

English

Français

Español

Русский

日本語

Deutsch

Português

한국어

Italiano

ICANN has been the recent target of online attacks. This announcement provides more information on those attacks and ICANN's response to them.

As has been widely reported, a number of domain names, including icann.com and iana.com were recently redirected to different DNS servers, allowing a group to provide visitors to those domains with their own website.

The domains in question are used only as mirrors for ICANN and IANA's main websites. The organizations' actual websites at icann.org and iana.org were unaffected.

The DNS redirect was a result of an attack on ICANN's registrar's systems. A full, confidential, security report from that registrar has since been provided to ICANN with respect to this attack.

It would appear the attack was sophisticated, combining both social and technological techniques, but was also limited and focused. The redirect was noticed and corrected within 20 minutes; however it may have taken anywhere up to 48 hours for the redirect to be entirely removed from the Internet.

ICANN is confident that the lessons learned and new security measures since introduced will ensure there is not a repeat of this situation in future. ICANN's Security and Stability Advisory Committee (SSAC) is considering the issue of access to domain names through registrars as a priority research topic. The results of that work will be made available through the usual channels.

In a separate and unrelated incident a few days later, attackers used a very recent exploit in popular blogging software Wordpress to target the ICANN blog. The attack was noticed immediately and the blog taken offline while an analysis was run. That analysis pointed to an automated attack. The blogging software has since been patched and no wider impact (except the disappearance of the blog while the analysis was carried out) was noted.

In response to the attacks, ICANN has started an internal review of its existing security procedures to see if there are any lessons that can be learnt and to make any improvements necessary. Full reports on both incidents have been provided to law enforcement agencies.