Domain hijacking bug found in Go Daddy

by Kevin Murphy
Go Daddy has rushed out a fix to a security bug in its web site that could have allowed attackers to steal valuable domain names. Security engineer Dylan Saccomanni found several “cross site request forgery” holes January 17, which he said could be used to “edit nameservers, change auto-renew settings and edit the zone file entirely”.Read the full article