gandi got hacked and I only found out about it because The Register did an article about it, not because they emailed their customers or anything 🙄
hijacking nameservers but only serving A records gets about a C- for effort
serve mx records, threaten to publicly release all the mail received unless you're paid X bitcoin
no one knows what emails they would have potentially received, some of it may have been important or confidential, can they take the risk and not pay?
and then when you get your money, release the mail anyway because you just want to watch the world burn
also get tls certs for every hijacked domain, just because you can
@vi they did hijack mx records, they just didnt set up mail servers
@boots would have taken about 2 minutes to get opensmtpd set up and receiving mail
the internet needs a better class of criminal
@vi Waiiiiiiit, what?! When? I have all my domain names at Gandie did I risk something?
@Sylvhem some websites were temporarily hijacked to serve malware, they've all been reset now
https://www.theregister.co.uk/2017/07/13/swiss_domain_name_hijack/ and https://news.gandi.net/en/2017/07/detailed-incident-report/
only some TLDs were affected, there's a list at the bottom of: https://news.gandi.net/en/2017/07/report-on-july-7-2017-incident/
@vi Thank you! Well, I'm relieved, it seems the domains are not using the TLD who have been affected.
@vi it seems that the account data at least didn't get hijacked, which is good