Squarespace, the popular website building platform, has recently been plagued by a security flaw that allows hackers to hijack domains during the migration process.
This vulnerability, discovered and reported by security researchers, poses a serious threat to Squarespace users, particularly those migrating their websites to a new domain or platform.
The attacks started on July 9 and impacted domains that were transferred to Squarespace after the domain registrar acquired domain registrations and customers from Google Domains last year.
Squarespace has been migrating users for roughly 10 million domain names purchased in the transaction, but its migration method contained a flaw that allowed hackers to take over accounts and modify DNS records for those domains.
How the Hack Works
The exploit leverages a loophole in Squarespace’s migration process. Essentially, hackers can manipulate the migration system to gain access to a user’s DNS settings and redirect their website traffic to a malicious server. This allows them to steal sensitive information, inject malware, or even completely take over the website.
Who is at Risk?
Any user migrating their website to a new domain or platform using Squarespace is vulnerable to this attack. The vulnerability is particularly concerning for businesses and individuals who rely on their websites for online sales, customer communication, or sensitive data storage.
Last week hackers exploited this flaw to target a dozen domains, including crypto platforms such as Celer Network, Compound Finance, Pendle Finance, and Unstoppable Domains, for DNS hijacking.
What Can You Do?
While Squarespace has acknowledged the issue and is working on a fix, it’s crucial to take proactive steps to protect yourself:
Stay Updated: Ensure your Squarespace account is using the latest version of the platform. Squarespace will likely release a patch to address the vulnerability.
Double-Check DNS Settings: After migrating your website, carefully review your DNS settings to ensure they are correct and haven’t been tampered with.
Use Strong Passwords: Utilize strong, unique passwords for all your online accounts, especially your Squarespace account.
Enable Two-Factor Authentication: This extra layer of security helps prevent unauthorized access to your account even if your password is compromised.
Monitor for Suspicious Activity: Be vigilant and monitor your website for any unusual behavior, such as redirects to unfamiliar sites, changes in content, or slow loading times.
What Squarespace is Doing
Squarespace has acknowledged the vulnerability and is actively working on a patch to address the issue. They are also investigating the exploit and taking steps to improve their security protocols.
Conclusion
The recent Squarespace migration flaw highlights the ongoing threat of cyberattacks and the importance of prioritizing online security.
By staying informed, taking proactive steps, and staying updated with the latest security practices, Squarespace users can minimize their risk and safeguard their websites and data.
Be vigilant and remember, security is an ongoing process, not a one-time even
CONTACT US FOR Digital Risk Management
You can be absolutely sure of a confidential, trustworthy and discreet service at all times, Evidence IT delivers results.
Contact us