RiskReact is a service of Realtime Register B.V. with a focus on security threats, cyber intelligence & OSINT.
Last year a registrar employee was the victim of social engineering resulting in an unauthorized transfer of a domain name.
A few months ago, a registrar employee was the victim of a spear-phishing attack, resulting in a DNS hijack.
A possible solution to counter such issues and other risks is a Domain Name Registry Lock.
Domain name registry locks are available for many TLDs. They all cover the same basic level of protection.
- Domain name update lock, preventing unauthorized or accidental updates …
In addition to the recent introduction of adding API keys, now we are adding Multi-Factor Authentication support. Multifactor authentication (MFA) is a security system that requires more than one method of authentication from independent categories of credentials to verify the user’s identity for a login or other transaction.
Multifactor authentication combines two or more independent credentials: what the user knows (password), what the user has (security token) and what the user is (biometric verification).
We will support the following methods for MFA:
- Webauthn (FIDO2) supporting Touch or Pin and Touch sensor like Yubikey with secure elements, Software authenticators and also …