You may hear some websites are hacked by hackers . Sometimes your websites also hacked by hackers. So In order to prevent your domain from attackers, you should know about Domain Hijacking. In this post i will explain you how the Domain Hacking is done.
DNS and Web Hosting:
You should understand about DNS before we dive into the actual Domain Hijacking. DNS is acronym for Domain Named Server. A website consists two parts. First one is Web Hosting (for storing web pages and other documents,like a locker which helps to store files). The second one is Domain Name(Eg www.example.com, ). Domain name is like phone number, we use phone number to call someone. Likewise Domain name will help to call the websites.
These two different parts combined and working as website.
To get a website , we need to register for hosting and Domain Name . Providers will give the control panel for both Hosting and Domain Name separately.
Hosting Control Panel:
This will enable you to upload the web pages(eg: index.html) and other documents(Eg: images,videos ) of websites.
DNS control Panel :
This will enable you to link to your website by simply entering the Web Hosting server details. Also need to enter domain details in Hosting control panel.
What is Domain Hijacking?:
Domain Hijacking is process of stealing the Domain Name from its owner. And giving link to some other webpages or web hosting.
What is the Process behind this Domain Hijacking?
In order to link to Domain hijacking, we first get the access of DNS control panel. To get this access we first need to things:
1. The domain registrar name for the target domain.
2. The administrative email address associated with the target domain.
These information can be obtained by accessing the WHOIS data of the target domain. To get access the WHOIS data, goto whois.domaintools.com, enter the target domain name and click on Lookup. Once the whois data is loaded, scroll down and you’ll see Whois Record. Under this you’ll get the “Administrative contact email address”.
To get the domain registrar name, look for something like this under the Whois Record. “Registration Service Provided By: XYZ Company”. Here XYZ Company is the domain registrar. In case if you don’t find this, then scroll up and you’ll see ICANN Registrar under the “Registry Data”. In this case, the ICANN registrar is the actual domain registrar.
Once you get the email address of Administrator, hack his mail id using Email Hacking
Once the hacker take full control of this email account, he will visit the domain registrar’s website and click on forgot password in the login page.
here he will be asked to enter either the domain name or the administrative email address to initiate the password reset process. Once this is done all the details to reset the password will be sent to the administrative email address. Since the hacker has the access to this email account he can easily reset the password of domain control panel. After resetting the password, he logs into the control panel with the new password and from there he can hijack the domain within minutes.
How to Protect Your Domain Name?
- The best way to protect your domain is that protect your Administrative email address.
- Another best way to protect your domain is to go for private domain registration. When you register a domain name using the private registration option, all your personal details such as your name, address, phone and administrative email address are hidden from the public.