Justin Thomas 🛡 on Nostr: npub1mc2x2…syype npub1ptgtl…q4hdh Just to clarify on this point (keeping in mind ...
npub1mc2x2xljtltfrdxd8v7x05ajzlxejel9y68r9rhgct8jkqrdj0psysyype (npub1mc2…yype) npub1ptgtl7y620ulmtqpsyke4ypaj42gqruvhe5eq99mwjw6nyz244dqxq4hdh (npub1ptg…4hdh) Just to clarify on this point (keeping in mind that I agree that Microsoft should authenticate these domains) that the domain at Azure is just data until a customer tells their registrar to point at the servers that Azure has allocated to the malicious user's copy of the target domain.
The target account would have to mistakenly assign the NS records to the exact servers that Azure had allocated to the attacker. There are more moving parts than in a normal subdomain takeover.
The target account would have to mistakenly assign the NS records to the exact servers that Azure had allocated to the attacker. There are more moving parts than in a normal subdomain takeover.