Notices where this attachment appears
-
Embed this notice
BrianKrebs (briankrebs@infosec.exchange)'s status on Wednesday, 15-Jan-2025 01:59:36 JST 
BrianKrebs
For the past 4.5+ years, MasterCard has had a typo in its DNS records, where one of its domains was named as a22-65.akam.ne, instead of a22-65.akam.net (Akamai).
Fortunately for MasterCard, the person who figured this out is one of the good guys, and he's actually here on Mastodon: @titon. I interviewed @titon -- Philippe Caturegli, founder of the security firm Seralys, in a story last year on domain name collisions.
https://krebsonsecurity.com/2024/08/local-networks-go-global-when-domain-names-collide/
Curiously, a look into the passive DNS for this domain via DomainTools indicates that someone in Russia registered this domain akam.ne in 2016 and had it sporadically resolve to an IP address in Germany for a few years (185.53.177,31). May have also involved the email address um-i-delo@yandex.ru.
Just a reminder to check your DNS records for typos. Because if you don't control the domain name that your name servers are pointing to, there is virtually no end to the world of hurt that crooks can visit on your organization.
GNU social JP is a social network, courtesy of GNU social JP管理人. It runs on GNU social, version 2.0.2-dev, available under the GNU Affero General Public License.
All GNU social JP content and data are available under the Creative Commons Attribution 3.0 license.