gandi got hacked and I only found out about it because The Register did an article about it, not because they emailed their customers or anything 🙄
hijacking nameservers but only serving A records gets about a C- for effort
serve mx records, threaten to publicly release all the mail received unless you're paid X bitcoin
no one knows what emails they would have potentially received, some of it may have been important or confidential, can they take the risk and not pay?
and then when you get your money, release the mail anyway because you just want to watch the world burn
@vi they did hijack mx records, they just didnt set up mail servers
@boots would have taken about 2 minutes to get opensmtpd set up and receiving mail
the internet needs a better class of criminal