woensdag 18 maart 2015

Google Apps Bug Exposes Personal Data Belonging to More Than 200K Domain Owners





A Google Apps bug has in public disclosed 282,867 hidden WHOIS records. Domains registered with eNom with WHOIS record protection revived through Google Apps in 2013 were affected, Cisco proclaimed in an exceedingly recent journal post.


Of the over three hundred,000 domains registered with eNom through Google, ninety four % were affected, with full names, addresses, phone numbers and email addresses being exposed in WHOIS records. whereas several domains area unit registered while not WHOIS protection, the data provided is a valuable tool for hackers seeking to line up phishing or spam campaigns or maybe take over a web site or identity.

Cisco discovered the flaw and notified Google on Feb. 19, and was mounted 5 days later. Google then assessed the applying of WHOIS protection for purchasers registered with alternative partners, and confirmed the matter was restricted to eNom domains.


Cisco says that at its peak a minimum of ninety % of domains registered with eNom via Google used privacy protection, and once the fix was applied but simple fraction were protected.


Google notified affected customers and apologized in an exceedingly letter sent last week, however Cisco warns that the currently re-hidden info remains out there to anyone with access to archived WHOIS knowledge. Despite that, the communication and co-operation between the 2 technical school giants appears to possess gone a lot of swimmingly than once Google was known as out by Microsoft for revealing a vulnerability before it had been resolved in Jan.


eNom has been having a difficult March, tho’ it’s not entirely in charge. The registrar suffered a DNS outage touching a 3rd of its customers earlier within the month.


Google launched its new Cloud Security Scanner for Google App Engine to beta in Gregorian calendar month to guard app security. whether or not this incident raises security issues with Google’s recently launched domains service remains to be seen.




Google Apps Bug Exposes Personal Data Belonging to More Than 200K Domain Owners

Geen opmerkingen:

Een reactie posten