ICANN states that the σελίδα of user accounts was breached by hackers who gained access to names, email addresses, hashed passwords, and more.
On Wednesday, the domain name service admitted that its server security was breached last weekteam: an "unauthorized person" managed to obtain data, including harmless information (!) such as newsletter subscriptions, and usernames with passwords.
It should be noted that anyone can create an account at ICANN.org, which is typically used by people working in the field of Internet governance – policy makers from governments and businesses, network developers, etc.
The leaked passwords were one-way encrypted using the bcrypt algorithm. ICANN has currently reset all of its users' passwords, and is warning anyone who uses them code access that used their password on ICANN.org and other websites to immediately change the passwords on those accounts, in case someone cracks the hashes.
As the company says the attack does not affect any IANA systems that operate on a separate network to ICANN.
An ICANN spokesman said the passwords are encrypted with bcrypt.
"There is no evidence that profile accounts had access to any ICANN internal systems without permission."
Let's say it is not the first time that ICANN has been attacked. In March, a security hole was discovered, in April, gTLD information was exposed in December, hackers managed to obtain a DNS database.
Perhaps the US government should have a look at ICANN and reconsider having deposited such important information.