Daily cyber threats and internet security news: network security, online safety and latest security alerts
June 27th, 2008

Hackers Hijack ICANN And IANA’s Domains

The official domains of ICANN, the Internet Corporation for Assigned Names and Numbers, and IANA, the Internet Assigned Numbers Authority were hijacked earlier today, by the NetDevilz Turkish hacking group which also hijacked Photobucket domain on the 18th of June.

The domains that were hijacked are,,,,
ICANN is responsible for the global coordination of the Internet’s system of unique identifiers. These include domain names, as well as the addresses used in a variety of Internet protocols. The Internet Assigned Numbers Authority (IANA) is responsible for the global coordination of the DNS Root, IP addressing, and other Internet protocol resources.

NetDevilz left the following message on all of the domains :

You think that you control the domains but you don’t! Everybody knows wrong. We control the domains including ICANN! Don’t you believe us? haha 🙂 (Lovable Turkish hackers group)

The hackers redirected visitors to ( free hosting again. Atspace was used when during the Photobucket DNS hijacking. Since the NetDevilz hacking group declined to reveal how they did it, many consider cross-site scripting or cross-site request forgery vulnerability as the methods used to hijack domains.

Share this item with others:

More on CyberInsecure:
  • Spammers Domain Registrar EstDomains Receives ICANN Deactivation Notice
  • Apple Safari Domain Extensions Insecure Cookie Access Vulnerability
  • Hackers Hijack Sarah Palin’s Yahoo Account, E-mails Published Online
  • New Phishing Hits Domain Owners Accounts At eNom, NetworkSolutions
  • CheckFree Online Payment Site Hijacked By Criminals, Users Redirected To Rogue Server

  • If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: Hackers Hijack ICANN And IANA’s Domains

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.