| Deutsch English Français Italiano |
|
<vn5bbc$3p5ks$1@dont-email.me> View for Bookmarking (what is this?) Look up another Usenet article |
Path: ...!eternal-september.org!feeder3.eternal-september.org!news.eternal-september.org!eternal-september.org!.POSTED!not-for-mail From: JAB <here@is.invalid> Newsgroups: misc.news.internet.discuss Subject: MasterCard DNS Error Went Unnoticed for Years Date: Sun, 26 Jan 2025 06:55:06 -0600 Organization: A noiseless patient Spider Lines: 20 Message-ID: <vn5bbc$3p5ks$1@dont-email.me> Reply-To: JAB <here@is.invalid> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Injection-Date: Sun, 26 Jan 2025 13:55:09 +0100 (CET) Injection-Info: dont-email.me; posting-host="25ef53c5aa0b5455144d8c7b2ca53072"; logging-data="3970716"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX19ZwCdZupRUjlYxbOmlXrtX" User-Agent: ForteAgent/8.00.32.1272 Cancel-Lock: sha1:dBUQZemGJfU/PfcyJf+rTg4YiyQ= Bytes: 1765 MasterCard DNS Error Went Unnoticed for Years The payment card giant MasterCard just fixed a glaring error in its domain name server settings that could have allowed anyone to intercept or divert Internet traffic for the company by registering an unused domain name. The misconfiguration persisted for nearly five years until a security researcher spent $300 to register the domain and prevent it from being grabbed by cybercriminals. .... .... The researcher said he'd hoped that the credit card giant might thank him, or at least offer to cover the cost of buying the domain. .... .... "Don't be like Mastercard," Caturegli concluded in his LinkedIn post. "Don't dismiss risk, and don't let your marketing team handle security disclosures." https://krebsonsecurity.com/2025/01/mastercard-dns-error-went-unnoticed-for-years/