How someone temporarily took over my subdomain
Read OriginalThe article details a security incident where the author's subdomain was temporarily taken over. An old CNAME record pointed to an AWS S3 bucket. After the author deleted their AWS account, a third-party created a bucket with the same globally unique name and hosted content. The takeover was detected only because the new owner added the site to Google Analytics, triggering an alert to the original domain owner. The post explains the DNS and S3 misconfiguration that enabled the hijack and the role of Google Analytics in discovering it.
Comments
No comments yet
Be the first to share your thoughts!
Browser Extension
Get instant access to AllDevBlogs from your browser