Craigslist Suffers DNS Hijack After DNS Records At Registrar Compromised

The popular American classified website Craigslist suffered a domain name service attack Sunday evening after “records maintained at one of our domain registrars were compromised, diverting users to various non-Craigslist sites.”

The issue was quickly corrected at the source, the company announced in a blog post, but many internet service providers (ISPs) cached the false DNS information for several hours, and the company warned some may still have incorrect information.

“One of the sites that users were sent to was DigitalGangster[dot]com, which was offline most of Monday presumably because of the amount of traffic that Craigslist has sent to it over the last 24 hours,” the security news site Threat Post reported. “The site is back online now, but mostly unresponsive. Members of the DigitalGangster, which serves as a forum of sorts for hackers, took credit for compromising the Twitter accounts of Bill O’Reilly, Britney Spears, etc. in 2009.”