GTLD Operators' Data Exposed on ICANN Portals
Thirty-one ICANN users’ credentials were used for gaining unauthorized access to new generic top-level domain (gTLD) applicants’ and operators’ contact information via ICANN’s new gTLD applicant and Global Domains Division portals, ICANN said Thursday. ICANN temporarily took both portals offline…
Sign up for a free preview to unlock the rest of this article
Timely, relevant coverage of court proceedings and agency rulings involving tariffs, classification, valuation, origin and antidumping and countervailing duties. Each day, Trade Law Daily subscribers receive a daily headline email, in-depth PDF edition and access to all relevant documents via our trade law source document library and website.
in late February to investigate unauthorized data exposures on the portals. Information from 29 registry operators was exposed via unauthorized access, though ICANN noted that information “was accessed inadvertently.” The “exposed registry contact information does not appear to contain sensitive personally identifiable information,” ICANN said. “Each of the affected parties has been notified of the data exposure.” ICANN said it took necessary steps to prevent similar types of data exposures from occurring in the future and “continues to deploy security-based updates on a regular basis as part of a broader, multiyear effort to harden all of ICANN's digital services.”