"For Just $20, Researchers Seize Part of Internet Infrastructure"

Researchers at watchTowr showed the ability to seize part of the Internet's infrastructure for just $20, bringing attention to the fragility of the trust and cybersecurity mechanisms that organizations and users depend on. While looking for Remote Code Execution (RCE) vulnerabilities in WHOIS clients, the researchers found that the WHOIS server for the .mobi Top Level Domain (TLD) (for mobile-optimized sites) had migrated years ago from "whois.dotmobiregistry.net" to "whois.nic.mobi". Following the change, the registration for the original domain (whois.dotmobiregistry.net) expired in December 2023. This article continues to discuss the team's findings that highlight the fragility of some of the mechanisms for establishing trust on the Internet.

Dark Reading reports "For Just $20, Researchers Seize Part of Internet Infrastructure"

Submitted by grigby1

Submitted by Gregory Rigby on