More than a million domain names, some owned by big companies, are at risk of cybercriminal takeover due to authentication vulnerabilities with web hosting providers and domain registrars. The issue comes from poorly configured DNS records, allowing thieves to claim domains without proper access. This longstanding problem has been used for malicious email campaigns and phishing attacks. Incredibly, despite past warnings and incidents, the same weakness persists at many large hosting and DNS providers. Cybercriminals are commandeering “Sitting Duck” domains as a traffic distribution system, allowing them to deceive users and impersonate trusted brands. Active efforts are being made to address this issue and prevent further attacks.
https://krebsonsecurity.com/2024/07/dont-let-your-domain-name-become-a-sitting-duck/