August 6, 2015
ICANN has fallen victim to a hacker attack. Details of users who had created profiles on the organisation’s public website have been exposed.
An announcement on ICANN’s website says email addresses and hashed passwords were acquired by an unauthorised person. No evidence has yet been found that any profiles have been accessed.
Users’ passwords were not leaked, but instead hashes or checksums of user passwords were exposed. The encrypted passwords (hashes) are not easy to reverse. As a precaution, ICANN asks all users to reset their password next time they attempt to log in and not use the same password elsewhere.
There is no indication on what motivated this security breach.