ICANN data compromised in spearphishing attack
A so-called spearphishing attack on ICANN has compromised the email credentials of several ICANN staff members and allowed the attacker access to user information, including email and postal addresses.
The targeted phishing attack also allowed the attacker to gain access to all files in ICANN’s Centralized Zone Data System (CZDS), a centralized point for interested people to request access to so-called zone files provided by participating top level domains. ICANN gave notice of the breach Tuesday, though the CZDS aspect of the compromise was discovered earlier this month.
The CZDS compromise included email and postal addresses, telephone numbers, user names and passwords of some users of the organization’s services, although the passwords were stored as salted cryptographic hashes. ICANN recommends that CZDS users take steps to protect online accounts for which they used the same user names or passwords, and the organization is providing notices to users whose personal information may have been compromised.