A phishing attack enabled hackers to modify the DNS records for several domains of media sites, including those run by The New York Times, Twitter and the Huffington Post U.K. Investigations revealed that the companies were not even the ones targeted by the attackers, who claimed to be the Syrian Electronic Army, a band of pro-Assad hacktivists responsible for a number of IT takedowns in recent months. In order to commandeer the major media sites, intruders compromised a reseller account that had access to the IT systems of Melbourne IT, an Australian registrar, and targeted an employee using an emailed spear phishing ruse.
展开▼