Leading web domain registrars suffer data breach

Account information with web.com, Network Solutions and register.com were accessed by cyber criminals

Data breach

A host of major domain name sites owned by the web.com brand have asked users to reset their passwords after discovering a breach dating back to August 2019.

Cyber criminals accessed the contact details, including names and addresses, of current and former account holders with web.com as well as its subsidiaries Network Solutions and register.com. No credit card information was compromised, according to a company statement, however, because this data is encrypted.

Unauthorised third-party access was only determined on 16 October, and the company says it took immediate steps to stop the intrusion. The domain name registrar then approached a cyber security firm to probe the scope of the incident, before informing the relevant authorities.

"Our investigation indicates that account information for current and former Web.com customers may have been accessed," the web.com statement said.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

"This information includes contact details such as name, address, phone numbers, email address and information about the services that we offer to a given account holder.

"We store credit card numbers in a PCI (Payment Card Industry) compliant encryption standard and do not believe your credit card information is vulnerable as a specific result of this incident."

Network Solutions is ranked as the fifth most widely-used domain name registrar in the world, according to domianstate.com, with almost seven million users, while register.com ranks 17th with 1.8 million users.

Web.com's statement did not disclose the number of users affected, although other reports including that published by CISO Mag suggests the hack affected users in the order of 22 million users across all three platforms.

Users are being told they don't need to take any additional steps beyond resetting their passwords the next time they log in to their accounts.

Web.com has also recommended that users regularly change their passwords as well as use a different password for each website they are registered with.

Featured Resources

Digitally perfecting the supply chain

How new technologies are being leveraged to transform the manufacturing supply chain

Download now

Three keys to maximise application migration and modernisation success

Harness the benefits that modernised applications can offer

Download now

Your enterprise cloud solutions guide

Infrastructure designed to meet your company's IT needs for next-generation cloud applications

Download now

The 3 approaches of Breach and Attack Simulation technologies

A guide to the nuances of BAS, helping you stay one step ahead of cyber criminals

Download now
Advertisement

Recommended

Visit/security/internet-security/354417/avast-and-avg-extensions-pulled-from-chrome
internet security

Avast and AVG extensions pulled from Chrome

19 Dec 2019
Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019

Most Popular

Visit/business-strategy/mergers-and-acquisitions/354602/xerox-to-nominate-directors-to-hps-board-reports
mergers and acquisitions

Xerox to nominate directors to HP's board – reports

22 Jan 2020
Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

13 Jan 2020
Visit/business-strategy/public-sector/354608/uk-gov-launches-ps300000-sen-edtech-initiative
public sector

UK gov launches £300,000 SEN EdTech initiative

22 Jan 2020
Visit/web-browser/30394/what-is-http-error-503-and-how-do-you-fix-it
web browser

What is HTTP error 503 and how do you fix it?

7 Jan 2020