EstDomains no more

Domain registrar EstDomains, which has been targeted by security researchers as being complicit in various malware, phishing, and illegal pharmaceutical schemes, has been deaccredited by ICANN, the organization that oversees Internet domain names.
According to a letter sent by ICANN to EstDomains President Vladimir Tsastsin, "this termination is based on your status as President of EstDomains and your credit card fraud, money laundering and document forgery conviction." The letter goes on to quote a section of ICANN's Registrar Accreditation Agreement, which allows ICANN to deaccredit a registrar that retains as a corporate officer any individual convicted of fraud or other financial-related crimes.
This comes after reports released—and pressure applied to ICANN by—Jart Armin and KnujOn, among others.

No such thing as a guaranteed safe site

Posted on June 27, 2008 - 12:22 by egeorge

When I talk to friends about web-based badware, one of the most frequent things I hear is a version of "Oh, I don't have to worry about that - I don't go to any sketchy sites." The security world has known for a while now that even legitimate, trusted websites can be hacked, but that knowledge still hasn't made its way out to much of the public. It often takes the hacking of a prominent site to shatter the illusion.

This week, the website of ICANN, the Internet Corporation for Assigned Names and Numbers, was hacked and defaced, along with the site for IANA, the Internet Assigned Numbers Authority. ICANN is the group in charge of internet governance at its most basic level, choosing which new top-level domains (like .com or .org) to create, and setting the protocols for how internet addresses work. Ironically, it was the domain name settings for the ICANN and IANA sites themselves that were hacked and redirected to a page with a derisive message.

The hackers fortunately are a group from Turkey apparently more interested in mischief and notoriety than in harming user's computers, but it would have been easy to redirect ICANN and IANA visitors to a malicious site if that had been the hackers' goal.

The lesson? As ZDNet's "Dancho Danchev put it":http://blogs.zdnet.com/security/?p=1356&tag=nl.e539:

bq. One thing’s for sure though, if the ICANN and IANA can lose control of their domains, anyone can.