Magazine article Information Management

Researchers Harvest E-Mails from Fortune 500 Firms

Magazine article Information Management

Researchers Harvest E-Mails from Fortune 500 Firms

Article excerpt

By misspelling words, two security researchers were able to harvest a treasure trove of confidential e-mails, including trade secrets, names, and passwords, from Fortune 500 companies.

According to Security News, Peter Kim and Garrett Gee from the information security think tank Godai Group intercepted 20 gigabytes of sensitive data by setting up "doppelganger domains"--web domain names that look the same as those of legitimate organizations except they are misspelled.

[ILLUSTRATION OMITTED]

This method of spoofing a real website to harness and intercept traffic is called "typosquatting."

Kim and Gee spent six months on the project, and the results were shocking: They intercepted more than 120,000 individual e-mails from 30 Fortune 500 companies and found that 151 companies are vulnerable to such attacks, Wired reported.

Fake domain names could include a preface, such as "e-mail," before the actual website name, or involve the change of only a period separating a subdomain name from a primary domain name. An example is se.ibm.com instead of the actual se.ibm.com domain that IBM uses for its division in Sweden, according to Wired.

Within the 120,000 e-mails drawn to their fake domain names were details, including user names and passwords, for an international organization that manages roadway toll systems, and the "full configuration details for the external Cisco routers for a large IT consulting firm, along with passwords for accessing the devices," Wired reported. …

Search by... Author
Show... All Results Primary Sources Peer-reviewed

Oops!

An unknown error has occurred. Please click the button below to reload the page. If the problem persists, please try again in a little while.