Network Solutions, one of the world’s biggest domain registrars, disclosed a data breach that impacted 22 million accounts.
Network Solutions, one of the world’s biggest domain registrars, disclosed a data breach that may have impacted 22 million accounts, no financial data was exposed.
“On October 16, 2019, Network Solutions determined that a third-party gained unauthorized access to a limited number of our computer systems in late August 2019, and as a result, account information may have been accessed,” reads a security breach notice. “No credit card data was compromised as a result of this incident.”
The company, a Web.com subsidiary, discovered the security breach on October 16, the security incident likely took place in August 2019.
According to the company, attackers hacked a “limited number” of systems that allowed them to access the huge trove of data. According to Web.com, hackers may have accessed approximately 22 million records for current and former Network Solutions, Register.com and Web.com accounts
Data accessed by the hackers includes contact details (i.e. name, address, phone numbers, and email address) and information about the services that the company offers account holders.
The company pointed out that it encrypts credit card numbers and no credit card data was compromised as a result of the intrusion.
“We store credit card numbers in a PCI (Payment Card Industry) compliant encryption standard and do not believe your credit card information is vulnerable as a specific result of this incident.” continues the notice. “That said, it is good practice to monitor your credit card account and we encourage you to notify your credit card provider if you see any suspicious charges,”
The company hired a cybersecurity firm to investigate the incident and notified the authorities of the incident.
Network Solutions is notifying affected customers via email and via its website, it also requiring all users to reset their account passwords.
This isn’t the first incident suffered by Network Solutions, in 2009 hackers stole over 500,000 payment cards from the company.
Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer.
Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US.
Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines.
Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.