Icann resets users’ passwords after burglary

The Icann resets the passwords of users of icann.org following an intrusion. According to the organization, which is responsible for IP addresses and domain names worldwide, this concerns email addresses, usernames and encrypted passwords.

That writes the Icann on its own news section. According to the site, the theft happened in the past week. It is not yet clear how the data was stolen, although it appears that the passwords were obtained through access from a third-party service provider. There is no indication that internal Icann systems have been invaded.

There would also be no indications that accounts have been used illegally. The passwords are encrypted with bcrypt. Yet everyone has to reset their password. You can do this by clicking on the ‘forgotten password’ link on the login page. Of course, it is also advised to change identical passwords on other sites, as the hashes may now be on the street.

The Iana service has not been hacked, nor has any operational or financial data been stolen. Icann was also hacked ten months ago. Then it was a targeted phishing attack.