Microsoft Buys Corp.com So Bad Guys Can’t

2020-04-07 12:34

Domain experts called corp.com dangerous because years of testing showed whoever wields it would have access to an unending stream of passwords, email and other sensitive data from hundreds of thousands of Microsoft Windows PCs at major companies around the globe.

In a written statement, Microsoft said it acquired the domain to protect its customers.

"To help in keeping systems protected we encourage customers to practice safe security habits when planning for internal domain and network names," the statement reads.

"We released a security advisory in June of 2009 and a security update that helps keep customers safe. In our ongoing commitment to customer security, we also acquired the Corp.com domain."

Over the years, Microsoft has shipped several software updates to help decrease the likelihood of namespace collisions that could create a security problem for companies that still rely on Active Directory domains that do not map to a domain they control.

News URL

https://krebsonsecurity.com/2020/04/microsoft-buys-corp-com-so-bad-guys-cant/

#microsoft

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Microsoft		724	797	4669	4670	3646	13782