What is Web Jacking ?
Illegally seeking control of a website by taking over a domain is known as Web Jacking. It is similar to hijacking.
In this kind of attack, the actual website is never touched. Instead, the system (DNS) that resolves website URL to IP address is compromised.
The internet works on the principle that every computer and website has a unique IP address. To browse a website, we simply type in the URL into the browser. The browser makes a DNS request to get the real address of the website. Only then can it connect to the website. In a web jacking attack, DNS entries are modified so that the real website’s URL now points to another website’s IP address. Hence the DNS server replies with the malicious site IP address, which the browser then connects to and displays to us.
What are the threats ?
Once a fraudster takes over a domain, he may hold the real owner to ransom for restoring control to him. He may also conduct illegal activities on the website.
Customers/ subscribers of to the original website may be fooled into giving up their credentials because the fraudster’s website looks so similar to the real site.
The criminal may also upload graphics or text to make it appear as if the original site has been defaced.
What are the risks ?
Online service cannot be resumed until the link to the site has been restored, and hence the victim can suffer losses such as that of
Reputation
Brand image
Brand value
Financial losses
