An attacker who successfully attacked and disrupted the work of the Chinese search engine Baidu in the last month, broke into account in the search engine-based domain name registrars and the U.S., posing as employees Baidu, asked to change your domain settings, said representatives poiskovika.V result of the fact that the service violated the rules and gave access to the account, Baidu has stopped its work for 5 hours.

The attack began on 11 January, when a hacker to contact support Register.com on behalf of Baidu. The attacker asked for support to change the e-mail address Baidu. The representative of the registrar sent a confirmation code to an existing e-mail Baidu. Since the offender had no access to corporate e-mail search engine, it generated a random confirmation code and sent it to the registrar. Not validate code, service replaced corporate e-mail at “antiwahabi2008@gmail.com”.

With access to the mail address, the hacker changed the password to access the site, reported representatives of the search engine. Then, in the settings page, it was stated that all users should be redirected to another site. Representatives of the search engine registrar accused of negligence and seek compensation of several million dollars damage.