Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Is this an example of the attack in the wild? Or what did I just view?


Someone has added http://cseo-coherence.microsoft.com to their CNAME file on Github Pages, as this domain's DNS entries were already pointing to GitHub Pages.

It's a subdomain takeover, but not as we would normally think of it (getting access to the DNS settings and pointing them to what we want) but from getting "access" to the server the subdomain already points to.


p.s. archive snapshot in case the site gets taken down later: https://archive.today/DEzVW




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: