Twitter.com DNS hijacked?

, posted: 18-Dec-2009 19:50

Twitter.com seems to be hijacked at the moment:
;; QUESTION SECTION:
;twitter.com. IN A
;; ANSWER SECTION:
twitter.com. 1901 IN A 74.217.128.160
;;; QUESTION SECTION:
;160.128.217.74.in-addr.arpa. IN PTR
;; ANSWER SECTION:
160.128.217.74.in-addr.arpa. 3600 IN PTR w-160.netfirms.com.
Was wondering why this popped up instead of the Twitter site before:
twitter
My good friend Dylan Reeve tells me that the "Iranian Cyber Army" may be behind the DNS hijack but I don't get that page at the moment, only a PNAP hosted one when I try to load twitter.com.
Update I Fat-fingered a PTR DNS query, and wrongly ended up at www.perfectworld.com - fixed.
Update II Biz Stone at Twitter confirms that it was a DNS hijack. He doesn't believe any accounts were compromised.


Tag(s):       


Other related posts:
Video: Kim Dotcom and Mathias Ortman at the IITP Mega breakfast
Two-factor authentication broken
The problem with naming and shaming






comments powered by Disqus


Writing

Google News search
Wired
Guardian
IT News
PC World New Zealand
Computerworld NZ
PC World and Computerworld Australia
PC World US
Computerworld US
NZ Herald
Virus Bulletin

Content copyright © Juha Saarinen. If you wish to use the content of my blog on your site, please contact me for details. I'm usually happy to share my material as long as it's not for spamblogs and content farms. Please attribute with a link back to this blog. If you wish to advertise on my blog, please drop me an email to discuss the details.
Comments policy All comments posted on this blog are the copyright and responsibility of the submitters in question. Comments commercial and promotional in nature are not allowed. Please ensure that your comments are on topic and refrain from making personal remarks.