American Samoa Domain Registry Was Exposing Client Data Since the mid-1990s

Catalin Cimpanu reports:

A British security researcher that goes online only by the name of InfoSec Guy revealed today that American Samoa domain registry ASNIC was using an outdated domain name management system that contained a bug allowing anyone to view the personal details of any .as domain owner.

The researcher also claims that anyone knowing of this bug would have been able to edit and delete any .as domain, just by altering the ASNIC domain info URL.

Read more on Softpedia.

About the author: Dissent