Slashdot Mirror

← Back to Stories (view on slashdot.org)

Network Solutions Suffers Massive Data Breach

Posted by Soulskill on from the is-there-a-prescription-for-that dept.

dasButcher writes "Network Solutions, the domain registration and hosting service company, suffered a massive security breach that lasted three months and exposed tens of thousands of credit card numbers of its customers and of the businesses that use its hosting and online payment processing service. The company is just beginning the victim notification process. 'There is no information on how the code was planted on the sites. While examination of the code shows that it had the ability to ship data off to a third party, and Network Solutions believes that it did just that, the exact code is not available for public review. There is also no public information as to where the data believed to be stolen was sent.'"

3 of 70 comments (clear)

  1. Released/posted at 7pm on a Friday? by xxxJonBoyxxx · · Score: 5, Insightful

    Released/posted after close of business on a Friday? I'd say this is part of a coordinated effort to say as little as possible about this.

    BTW, a better/original story link is here:
    http://voices.washingtonpost.com/securityfix/

  2. Re:I left many years ago... by generic.individual · · Score: 5, Interesting

    I hate those people. I once stupidly used their site (because it was the first name to pop to mind) to do a whois on a potential domain for a business. The name was simple, my parenters name and my name, and surprisingly not taken. Then I found out why so many people hate these guys. When I did the whois network solutions registered the name I was searching so I now had to either buy that name from them or wait a year for it to be free again. What assholes.

    Sucks for the lower downs involved, but I can't help but smile.

  3. Re:Shashib by rockwood · · Score: 5, Informative
    Shashi B,

    Give me a break! - I too worked for Network Solutions as Level II support - I know all about the bullshit story lines in order to save face. iframe exploits throughout the customers sites, issues not followed through on, the denial of New Ventures having -any- affiliation with NetSol. The ease of gaining access.

    In fact while I worked there, several Tech's uploaded basic http shell emulators onto their sites and all had root level access within minutes.

    Your infrastructure was and still is seriously flawed and appears that it always will be - I know first hand!

    I'll file this under TasteButDontSwallow

    --
    Never try to beat a professional at his own game!