The Register® — Biting the hand that feeds IT

Gmail exploit aids domain hijack

Alacrity Fitzhugh

Oops 

Posted Friday 28th December 2007 14:10 GMT

Unhappy

Looks like the hackers got it back.

I get an error when I try to connect.

mickey

G-mail 

Posted Friday 28th December 2007 15:38 GMT

Thumb Up

I have use G-mail for a long time and have a number of domains. but iv never found a problem. infact i wish google had there own ISP&domain reg. as i think the service they have given me is tops. i have been a internet surfer and basic web builder for a number of years and been with gmail for the last 18months and im yet to find a problem. so not everyone is effected by this and i am still 100% happy with m google service.

Grant

no longers oops 

Posted Friday 28th December 2007 15:38 GMT

Happy

Just checked it looks fine now. He mentions going down due to heavy traffice but has fixed that up now.

Stephen Stagg

GMailers: how to check 

Posted Friday 28th December 2007 15:38 GMT

Stop

Anyone who has a gmail accout (or google apps account) should check their filters (settings->filters) for any entries that they didn't add.

Although the exploit has been fixed, someone who hacked your account before the fix could still be silently monitoring your email. The only way to be sure is to check your filters.

Stephen Stagg

@ Alacrity Fitzhugh 

Posted Friday 28th December 2007 15:39 GMT

Happy

No, you just observed the slashdot effect in action :). Or actually the 'NYTimes, Digg, StumbleUpon, Reddit, Lifehacker and many other online sources.' effect.

Erik Aamot

not much of a news story .. 

Posted Friday 28th December 2007 22:12 GMT

Really, all David needed to do when the domain 'disappeared' was to do a WHOIS on Davidairey.com, see that the hijackers had been dumb enough to park it at Godaddy, and just call GoDaddy directly about the fruadulant transfer .. GoDaddy would have then required a fax to Verisign with documentation proving David is who he says he is, and the domain returned (not to mention the hijackers paying for another years registration in making the transfer to GoDaddy)

His Hosting firm should have known this, at least, and assisted him .. domain could have been recovered in 3 business days maximum.

GoDaddy does good, quick work on fraud cases, they really don't want shady stuff going on using thier services

Dick

What a great idea! 

Posted Saturday 29th December 2007 00:52 GMT

Flame

Make your whole livelihood dependent on a free email service.

Chris

What a great idea 

Posted Saturday 29th December 2007 10:14 GMT

Boffin

And his site receives a huge amount of publicity. <cough>

Anonymous Coward

GoDaddy 

Posted Saturday 29th December 2007 18:46 GMT

All these nice comments about GoDaddy made me laugh. They are the host (in the medical sense as well as the web sense) for most of the upsurge in SPAM I have been receiving since I needed to create an account on a support page. Fortunately I had the sense to use a SPAM-bucket mail address and have been forwarding all the wonderful offers to the FTC (spam@ecu.gov). It is all the more enjoyable as the email include a virtuous footer proclaiming they adhere to the CAN-SPAM Act of 2003.

Nearly forgot, when I complained to GoDaddy they asked me to forward examples which I did, unfortunately their SPAM filter blocked it.....priceless

Anonymous Coward

NoDaddy.. 

Posted Saturday 29th December 2007 19:04 GMT

Flame

@Erik Aamot -

If I recall correctly a lot of people have serious problems, in trying to get usable customer assistance from GoDaddy.. wasn't SecLists.org shut down when it was hosted on GD?

I've heard a lot of rumblings about GD being a nightmare to use and get any kind og help or support (you get more from Googling for help or asking in other communities than their Helldesk), one of the reasons I avoided them when I bought my own domain.

Alan

Domain locking ? 

Posted Sunday 30th December 2007 03:37 GMT

Don't GoDaddy use domain locking ? The registrar I use won't consider any transfer request while the domain is locked, and only I can unlock it, by visiting their site, logging in, and clearing a check box. I guess the "victim" needs to learn some basic security (and use a better registrar).

Rich

This can't be right 

Posted Sunday 30th December 2007 12:39 GMT

Joke

Exploits are caused by the evil of Micro$oft. I know this to be true because I read it on Slashdot.

How can there be an exploit that affects Google? - they don't use M$FT software. It must be a conspiracy orchestrated personally by Bill Gates from his lair in the Space Needle.

Chris

@Rich 

Posted Monday 31st December 2007 06:18 GMT

Coat

--

'Exploits are caused by the evil of Micro$oft. I know this to be true because I read it on Slashdot.'

--

Taxi!

Andy Dent

Praise for GoDaddy 

Posted Monday 31st December 2007 06:18 GMT

Thumb Up

I just wanted to chime in and say I've been very happy with GoDaddy support turnaround and their services both hosting and their basic domain redirection.

I've not had any spam problems traceable to them.

number-g

Uh . . . 

Posted Tuesday 1st January 2008 07:38 GMT

Heart

surely the most striking thing about this is the hilariously low ransom, that they then lowered?

maybe they wanted to get a wii or something, and some pokemon.

Mage

Sense 

Posted Wednesday 2nd January 2008 10:29 GMT

Paris Hilton

Never use gmail, hotmail or yahoo mail for anything important.