The Register: The IT security certification body that runs the Certified Ethical Hacker programme has itself been hacked.
The EC-Council said the same hackers who ran the DNS poisoning attack that resulted in the defacement of its website in late February had also managed to access the control panel for its website after breaking into the systems of a third-party registrar. This compromised access allowed the miscreants to circumvent security controls and get into the security organisation’s email system, as a breach notice from the EC-Council to its members explains.
