Turkish hackers Friday defaced the official sites of the international organisations that oversee the internet's critical routing infrastructure and regulate domain names, researchers said Saturday.
A group calling itself "NetDevilz" claimed responsibility for the hack, which Thursday morning temporarily redirected visitors to the sites for IANA ( Internet Assigned Numbers Authority ) and ICANN (Internet Corporation for Assigned Names and Numbers).
Users who tried to reach iana.com, iana-servers.com, icann.com and icann.net were shunted to an illegitimate site, said researchers at zone-h.org, a group that collects evidence of site attacks, including page defacements and redirects. According to a screen capture of the defacement snapped by zone-h.org, the bogus site simply displayed a taunting message: "You think that you control the domains but you don't! Everybody knows wrong. We control the domains including ICANN! Don't you believe us?"
IANA, ironically, is the organisation responsible for managing the DNS (domain name system) root zone and assigning the DNS operators for the internet's top-level domains, such as .com and .org. DNS, which translates the domains and URLs -- such as pcworld.co.nz -- into IP addresses, is a critical component of the web's traffic-guiding infrastructure.
ICANN, which oversees IANA, also allocates IP address space and manages the web's top-level domain naming system.
Perhaps not coincidental to the defacement, ICANN was also in the news for voting to relax rules in assigning and managing generic top-level domains.
The hackers redirected IANA and ICANN traffic to the same IP address that they used last week when they broke into Photobucket's image-sharing site and pushed its users to a server operated by Atspace.com, a German hosting service, said Bulgarian security researcher Dancho Danchev in a blog post Friday.
A spokesman for ICANN contacted Friday morning wasn't aware of the hack, and declined comment until he found find out more.