News Pages

Home E-Paper Today's Paper News Opinion Cartoon

Group News Sites

Daily FT Sunday Times Tamil Mirror Lankadeepa
Contact

Let's get Social

Facebook Twitter Call Us Mail Us

Copyright @ Wijeya Newspapers Ltd.

Ten domain names modified following cyber attack: LK Domain Registrar

13 February 2021 01:35 am

At least 10 domain names have been modified to point to a new IP address following the recent cyber attack to the ‘.lk’ Domain Registry, LK Domain Registry's Domain Registrar Prof. Gihan Dias said.

He said the attack was reported on Saturday (6) morning and was solved by 8.30 am.

“In addition to the servers which run the Domain Name System (DNS), the Registry maintains a registration system through which customers may register new domains, renew domains, change details of their domains, etc.,” he said.

Access to the .lk domain registration systems was restricted to prevent further damage, he said.

“Once the changes were identified, our team immediately reverted the changes to their previous settings. This was completed within 90 minutes. This issue was immediately reported to our security partner, TechCERT, who began the probe together with the LK technical and the operations teams,” Prof. Dias said.

It was identified that the changes were done remotely by accessing the Domain Registration system. TechCERT was able to identify the incident was done by compromising of the credentials of one system user account and bypassing of the restrictions which normally prevent the admin interface from being accessed from the Internet.

However, it was reported that there was no evidence of any other unauthorised access to our systems.

“We have also not found any evidence of changes to any .lk websites, or of any information being stolen from any other .lk websites. We have not found any substantial evidence that any malware had been distributed via the website pointed to by the attackers.

Together with TechCERT, the shortcomings in our security mechanism have been identified, and we have updated our systems to mitigate these vulnerabilities.

 Several other security improvements have also been applied. Our domain registration systems are now back on-line.
When you first log-in to the system, after it is back on-line, we recommend you reset your password by visiting My Profile > Change Password. (Chaturanga Samarawickramam)

RECOMMENDED

Controversy over foreigners issuing on-arrival visas at BIA 02 May 2024
Attempt to send 17 year-old-boy to London on forged documents foiled 29 Apr 2024
LADIES NIGHT AT THE TIKI BAR 27 Apr 2024
Eskimo Fashion Knitwear (Private) Limited Recognized for Longevity and Contribution to Sri Lanka’s Economy 20 Apr 2024

Most Viewed in News

Controversy over foreigners issuing on-arrival visas at BIA 02 May 2024
Attempt to send 17 year-old-boy to London on forged documents foiled 29 Apr 2024
Oil and gas exploration halted by prolonged legal dispute 27 Apr 2024
Ranil’s evolving strategy to win 2024 presidential poll 27 Apr 2024

All the content on this website is copyright protected and can be reproduced only by giving the due courtesy to 'dailymirror.lk' Copyright © 2004 Wijeya Newspapers Ltd.