Technical Insight-Vulnerabilities-Web Application Security

Hillary Clinton’s Emails And The Internet Services Supply Chain

Do you want the blue pill? Then leave. Up for the red pill? Then keep reading.

There has been a lot of talk about Hillary Clinton’s emails lately, and for good reason. People are genuinely concerned about national secrets falling into the hands of those who might hurt people. Regardless of the merit of the claims of how her private email address was used, I wanted to spend some time talking about something that hasn’t been talked about enough – the Internet Services Supply Chain (a made up term, like all the others). 😉

What is the Internet Services Supply Chain? Whenever you build a website or email account that you host yourself, there are a number of things that you need to rely on. First, you need to rely on the physical hardware and its components – that’s called the Hardware Supply Chain and is a well understood (although not at all solved) issue. Then you have software components that your site utilizes – that’s called the Software Supply Chain and is also a well understood (although not at all solved) issue. Lastly, there are a number of service providers that are incredibly important for the continuity and security of your site, and that is the Internet Services Supply Chain. Those can include – but are not limited to – hosting providers, DNS providers, email providers and registrars.

For example, Hillary Clinton’s email MX records are actually on two separate IP addresses:


clintonemail.com.inbound10.mxlogic.net - 208.65.144.3

clintonemail.com.inbound10.mxlogicmx.net - 208.65.144.2

Unfortunately, it’s not that easy. Mxlogic relies on companies too. And those companies rely on other companies, and so on. Here’s just a simple mapping of all of the companies who could theoretically have taken over her domain as a result of that supply chain:


clintonemail.com

	Relies on ns16.worldnic.com for DNS

		Relies on netsol.com for NS

			Relies on mx.myregisteredsite.com for Mail

				Relies on droneteam@web.com for Domain Admin Control

	Relies on networksolutions.com for Registrar

		Relies on netsol.com for NS

			Relies on mx.myregisteredsite.com for Mail

				Relies droneteam@web.com for Domain Admin Control

	Relies on mxlogicmx.net for Email

		Relies on hostmaster@mcafee.com for Domain Admin Control

			Relies on akam.net for DNS

				Relies on hostmaster-billing@akamai.com for Domain Admin Control

		Relies on pdns3.ultradns.org for DNS

			Relies on Godaddy.for DNS

				Relies on domains@neustar.biz for Domain Admin Control

					Relies on pphosted.com for Mail

						Relies on proofpoint.com for DNS

						Relies on dns@proofpoint.com for Domain Admin Control

					Relies on NEUSTARREGISTRY.BIZ for Registrar

						Relies on Godaddy for Registrar

							Relies on outlook.com for Mail

								Relies on msft.net for DNS

									Relies on domains@microsoft.com for Domain Admin Control

								Relies on o365filtering.com for DNS

								Relies on hotmail.com for Mail

								Relies on domains@microsoft.com for Domain Admin Control

						Shares Host with dominios.com.co

						Shares Host with ddosattacks.com

						Shares Host with startknowing.biz

						Shares Host with neustarportingxpress.biz

						Shares Host with neustartcpa.biz

						Shares Host with dset.net

						Shares Host with m.dset.com

						Shares Host with neustar.tw

						Shares Host with neustarportingxpress.com

						Shares Host with mydotnyc.info

						Shares Host with neustarpartners.org

						Shares Host with npac4america.net

						Shares Host with neustarintelligentcloud.org

						Shares Host with ipenablers.biz

						Shares Host with ddosattacks.info

						Shares Host with extranet.sipix.neustar.biz

						Shares Host with neustarinfoservices.us

						Shares Host with socialscoop.us

						Shares Host with buy.us

						Shares Host with themobilecloud.us

						Shares Host with neustarportxpress.com

						Shares Host with dset.biz

						Shares Host with neustarreferrals.us

						Shares Host with neustarxpressport.biz

						Shares Host with getonlinewith.us

						Shares Host with intelligentcloud.us

						Shares Host with neustaripenablers.biz

						Shares Host with betterintelligence.com

						Shares Host with usblog.neustar.us

						Shares Host with themobilecloud.co

						Shares Host with identitymatters.biz

						Shares Host with campaignadministrator.biz

						Shares Host with neustarportxpress.biz

						Shares Host with npacforamerica.biz

						Shares Host with advantageoptout.com

						Shares Host with mobilecloudsolutions.us

						Shares Host with themobilecloud.biz

						Shares Host with npac4america.biz

						Shares Host with neustaripenablers.net

						Shares Host with campaignadministrator.org

						Shares Host with portxpress.biz

						Shares Host with themobilecloud.org

						Shares Host with www.neustarultraservices.biz

						Shares Host with kickstartamerica.net

						Shares Host with www.neustarregistry.biz

						Shares Host with kickstartamerica.info

						Shares Host with account.neustar.us

						Shares Host with portxpress.neustar.biz

						Shares Host with nic.us

						Shares Host with neulevel.biz

						Shares Host with neustarregistry.biz

						Shares Host with neustar-creative.biz

						Shares Host with neustarinfoservices.biz

						Shares Host with simpleportportal.biz

						Shares Host with kickstartamerica.us

						Shares Host with neustargovsolutions.biz

						Shares Host with neustargovsolutions.co

						Shares Host with ddosattacks.co.uk

						Shares Host with kickstartamerica.org

						Shares Host with neustarreferrals.net

						Shares Host with archerdev.neustar.biz

						Shares Host with getonlinewith.biz

						Shares Host with neustaraffiliates.biz

						Shares Host with nic.biz

						Shares Host with neustarpartners.eu

						Shares Host with neustarpartners.com

						Shares Host with neulevel.com

						Shares Host with neustarultraservices.com

						Shares Host with neustar-registry.com

						Shares Host with neustarsummit.biz

						Shares Host with billing.neustar.com

						Shares Host with archer.neustar.biz

						Shares Host with neustarmobilecloudsolutions.biz

						Shares Host with neustarplatformone.biz

						Shares Host with neustar.cn

						Shares Host with billing.neustar.biz

						Shares Host with neustaraffiliates.net

						Shares Host with neustarpartners.us

						Shares Host with neustarpartner.us

						Shares Host with uvvu.com

						Shares Host with neustaraffiliate.org

						Shares Host with gomocode.co

						Shares Host with gomocode.net

						Shares Host with getmy.us

						Shares Host with neustarpartner.org

						Shares Host with gomocode.com

						Shares Host with neustaraffiliates.us

						Shares Host with neustarintelligentcloud.com

						Shares Host with loadtesting.biz

						Shares Host with neustarpartners.cn

						Shares Host with neustarpartners.asia

						Shares Host with neustarmobilecloudsolutions.net

						Shares Host with neustar.biz

						Shares Host with neustaraffiliate.us

						Shares Host with neustarinfoservices.info

						Shares Host with neustarreferrals.biz

						Shares Host with neustarintelligentcloud.co

						Shares Host with mobilecloudsolutions.co

						Shares Host with dotyou.biz

						Shares Host with neustaradadvisor.us

						Shares Host with mobilecloudsolutions.net

						Shares Host with neustarmedia.biz

						Shares Host with neustar-registry.biz

						Shares Host with intelligentcloud.biz

						Shares Host with socialscoop.biz

						Shares Host with neustaradadvisor.info

						Shares Host with npac4america.us

						Shares Host with mobilecloudsolutions.biz

						Shares Host with neustarpartner.com

						Shares Host with neustarreferrals.org

						Shares Host with neulevel.cn

						Shares Host with library.us

						Shares Host with nightfire.com

						Shares Host with neulevel.net

						Shares Host with neustarultraservices.biz

						Shares Host with neustaradadvisor.biz

						Shares Host with neustarplatformone.com

						Shares Host with neustarmobilecloudsolutions.co

						Shares Host with npacforamerica.com

						Shares Host with redirect.neustar.biz

						Shares Host with mydotnyc.org

						Shares Host with neustarintelligentcloud.net

						Shares Host with registry.neulevel.biz

						Shares Host with ownit.nyc

						Shares Host with neustarpartner.net

						Shares Host with rfc2916.net

						Shares Host with agile.neustar.biz

						Shares Host with platformone.biz

						Shares Host with npac4america.com

						Shares Host with enum.org

						Shares Host with neustarplatformone.us

						Shares Host with neustaradadvisor.com

						Shares Host with neustarmobilecloudsolutions.us

						Shares Host with gomocodes.com

						Shares Host with my.biz

						Shares Host with neustaraffiliate.net

						Shares Host with parks.us

						Shares Host with dset.com

						Shares Host with gomocode.org

						Shares Host with neustarpartners.net

						Shares Host with neustarmobilecloudsolutions.org

						Shares Host with neustarlocaleze.info

						Shares Host with www.betterintelligence.com

						Shares Host with neustarmobilecloudsolutions.com

						Shares Host with neustaripenablers.com

						Shares Host with campaignadministrator.us

						Shares Host with campaignadministrator.com

						Shares Host with gomocodes.biz

						Shares Host with mydotnyc.biz

						Shares Host with neustaripenablers.org

						Shares Host with payment.neustar.biz

						Shares Host with campaignadministrator.net

						Shares Host with npac4america.co

						Shares Host with mobilecloudsolutions.org

						Shares Host with neustarsecretariat.biz

						Shares Host with mydotnyc.us

						Shares Host with neustarpartner.biz

						Shares Host with mydotnyc.net

						Shares Host with totalview.biz

						Shares Host with neustarreferrals.com

						Shares Host with platformone.neustar

						Shares Host with interactiveinsightssummit.com

						Shares Host with neustarinfoservices.com

						Shares Host with neustarlocaleze.us

						Shares Host with portingxpress.biz

						Shares Host with decellc.com

						Shares Host with support.neustar

						Shares Host with npacforamerica.us

						Shares Host with gomocode.biz

						Shares Host with mobilenextbigthing.biz

						Shares Host with npac4america.org

						Shares Host with vote.us

						Shares Host with neustarultraservices.net

						Shares Host with neustarintelligentcloud.us

						Shares Host with portingxpress.com

						Shares Host with dset.mobi

						Shares Host with loadtesting.us

						Shares Host with about.us

						Shares Host with neustaraffiliate.biz

						Shares Host with www.whobiz.biz

						Shares Host with stateofddos.biz

						Shares Host with ddosattacks.us

						Shares Host with xpressport.biz

						Shares Host with lookup.neustar.biz

						Shares Host with neustarpartners.biz

						Shares Host with portdr.org

						Shares Host with neustaraffiliates.com

						Shares Host with portdr.biz

						Shares Host with dotbiz.biz

						Shares Host with blog.neustar.biz

						Shares Host with identitymatters.co

						Shares Host with identitymatters.com

						Shares Host with kickstartamerica.biz

						Shares Host with kickstartamerica.co

						Shares Host with redir.neustar.biz

						Shares Host with identitymatters.us

						Shares Host with portdr.com

						Shares Host with neustaraffiliates.org

						Shares Host with portdr.us

						Shares Host with neustar.com.cn

						Shares Host with portdr.net

						Shares Host with neustarsimpleportportal.biz

						Shares Host with cloudnames.biz

						Shares Host with neusentry.biz

						Shares Host with etns.org

						Shares Host with dset.us

						Shares Host with neustar.com

						Shares Host with neustarlife.biz

						Shares Host with neustarintelligentcloud.biz

						Shares Host with payment.neustar.com

						Shares Host with neustarxpressport.com

						Shares Host with ddosattacks.biz

						Shares Host with mydotnyc.com

						Shares Host with neustargovsolutions.us

						Shares Host with neustargovsolutions.net

						Shares Host with neustartechnology.biz

						Shares Host with startwithus.biz

						Shares Host with www.neustarultraservices.com

						Shares Host with startwithus.net

						Shares Host with startwithus.us

						Shares Host with startwithus.org

						Shares Host with neustar.us

						Shares Host with dset.org

			Relies on PDNS196.ULTRADNS.BIZ for DNS

			Relies on PDNS196.ULTRADNS.CO.UK for DNS

			Relies on DNS196.ULTRADNS.COM for DNS

			Relies on PDNS196.ULTRADNS.INFO for DNS

			Relies on PDNS196.ULTRADNS.NET for DNS

			Relies on PDNS196.ULTRADNS.ORG for DNS

		Relies on pdns2.ultradns.net for DNS

		Relies on pdns5.ultradns.info for DNS

		Relies on pdns6.ultradns.co.uk for DNS

		Relies on dnsadmin@mxlogic.com for Domain Admin Control

		Relies on register.com for Registrar

			Relies on NS-1119.AWSDNS-11.ORG for DNS

				Relies on hostmaster@amazon.com for Domain Admin Control

					Relies on dynect.net for DNS

						Relies on dynamicnetworkservices.net for DNS

							Relies on dynamicnetworkservices.net@secretregistration.com for Domain Admin Control

						Relies on mailhop.org for Mail

							Relies on tucowsdomains.com for Registrar

								Relies on tucowsdomains.com@contactprivacy.com for Domain Admin Control

								Relies on TUCOWS.COM on DNS

						Relies on hostmaster@dyn.com for Domain Admin Control

					Relies on markmonitor.com for Registrar

						Relies on psmtp.com for MX					

							Relies on google.com for MX

							Relies on google.com for DNS

	                                        Shares Host with allwhois.co.uk

	                                        Shares Host with allwhois.com

	                                        Shares Host with bannermonitor.com

	                                        Shares Host with brandseyeview.com

	                                        Shares Host with collectivetrust.com

	                                        Shares Host with collectivetrust.net

	                                        Shares Host with collectivetrust.org

	                                        Shares Host with collectivetrustsolutions.com

	                                        Shares Host with dtecnet.com

	                                        Shares Host with dtecnet.dk

	                                        Shares Host with dtecnet.net

	                                        Shares Host with dtecnetusa.com

	                                        Shares Host with emarkmonitor.biz

	                                        Shares Host with emarkmonitor.cn

	                                        Shares Host with emarkmonitor.com

	                                        Shares Host with emarkmonitor.info

	                                        Shares Host with emarkmonitor.net

	                                        Shares Host with emarkmonitor.org

	                                        Shares Host with emarkmonitor.us

	                                        Shares Host with idaworks.com

	                                        Shares Host with insiderforum07.com

	                                        Shares Host with mark-monitor.at

	                                        Shares Host with mark-monitor.biz

	                                        Shares Host with mark-monitor.fr

	                                        Shares Host with mark-monitor.info

	                                        Shares Host with mark-monitor.it

	                                        Shares Host with mark-monitor.net

	                                        Shares Host with mark-monitor.org

	                                        Shares Host with mark-monitor.ru

	                                        Shares Host with markmonitor.am

	                                        Shares Host with markmonitor.at

	                                        Shares Host with markmonitor.be

	                                        Shares Host with markmonitor.biz

	                                        Shares Host with markmonitor.ca

	                                        Shares Host with markmonitor.ch

	                                        Shares Host with markmonitor.ci

	                                        Shares Host with markmonitor.cn

	                                        Shares Host with markmonitor.co.kr

	                                        Shares Host with markmonitor.co.nz

	                                        Shares Host with markmonitor.co.uk

	                                        Shares Host with markmonitor.com

	                                        Shares Host with markmonitor.com.au

	                                        Shares Host with markmonitor.com.br

	                                        Shares Host with markmonitor.com.kh

	                                        Shares Host with markmonitor.com.py

	                                        Shares Host with markmonitor.com.ru

	                                        Shares Host with markmonitor.cz

	                                        Shares Host with markmonitor.de

	                                        Shares Host with markmonitor.dk

	                                        Shares Host with markmonitor.es

	                                        Shares Host with markmonitor.eu

	                                        Shares Host with markmonitor.fi

	                                        Shares Host with markmonitor.fr

	                                        Shares Host with markmonitor.gr

	                                        Shares Host with markmonitor.gy

	                                        Shares Host with markmonitor.hu

	                                        Shares Host with markmonitor.in

	                                        Shares Host with markmonitor.info

	                                        Shares Host with markmonitor.it

	                                        Shares Host with markmonitor.jp

	                                        Shares Host with markmonitor.la

	                                        Shares Host with markmonitor.lt

	                                        Shares Host with markmonitor.lu

	                                        Shares Host with markmonitor.lv

	                                        Shares Host with markmonitor.name

	                                        Shares Host with markmonitor.net

	                                        Shares Host with markmonitor.nl

	                                        Shares Host with markmonitor.nu

	                                        Shares Host with markmonitor.org

	                                        Shares Host with markmonitor.pl

	                                        Shares Host with markmonitor.pt

	                                        Shares Host with markmonitor.ro

	                                        Shares Host with markmonitor.se

	                                        Shares Host with markmonitor.sk

	                                        Shares Host with markmonitor.su

	                                        Shares Host with markmonitor.tc

	                                        Shares Host with markmonitor.tv

	                                        Shares Host with markmonitor.us

	                                        Shares Host with markmonitor.vg

	                                        Shares Host with markmonitorglobal.com

	                                        Shares Host with mm-test-08c.info

	                                        Shares Host with mmdomain53.biz

	                                        Shares Host with mmdomain53.net

	                                        Shares Host with mmdomain53.org

	                                        Shares Host with wwwmarkmonitor.ch

	                                        Shares Host with wwwmarkmonitor.it

	                                        Shares Host with wwwmarkmonitor.ru

			Relies on NS-1887.AWSDNS-43.CO.UK for DNS

			Relies on NS-226.AWSDNS-28.COM for DNS

			Relies on NS-948.AWSDNS-54.NET for DNS

And this doesn’t even cover the Supply Chain for her hosting providers for mail.clintonemail.com or sslvpn.clintonemail.com. Now step back for a minute and ask yourself not “how easy would it be to break into all of these,” but “how easy would be for someone to break into any one of these domains?” I know both Rackspace and Google are on the list, and they were both targeted in the Aurora attacks that were allegedly attributed to the Chinese military (as an example). So it’s not a matter of whether it is possible to break into a domain, it’s just a matter of how hard someone is willing to try. Can you have a secure website without secure email? (Spoiler no you cannot).

We are putting all our eggs in a very small basket that hundreds of thousands of people could potentially have access to. The real issue isn’t Hillary Clinton and her blackberry. The real problem is that everyone everywhere who is on the public Internet is subject to this Internet Service Supply Chain. It’s inescapable because the Internet isn’t a bunch of islands; it’s far more interconnected, with consolidated power resting with a handful of service providers. We are all just as vulnerable as Hillary is, if we use the same Internet that she does.

Hillary is no different from anyone else. I could have done this same analysis on any company anywhere, and gotten roughly the same results. Let’s say the target was actually secure (Hillary’s email in this case); it doesn’t matter. If there is any vulnerability in any one of the companies the target relies on, the target is vulnerable. That is what happened with Lenovo, whose Registrar (Webnic) was hacked. And that’s just one example from less than a month ago.

That’s the problem with the Internet Services Supply Chain – any weak link in the chain can cause a cascade/ripple effect. It also means the stakes are getting even higher for those service providers and those who use them as power is consolidated to a few mega-companies that have the reach and access to control so many other companies. At some point no company and no individual will be able to ensure their own or their partners’ security.

And now you’re probably asking yourself, “Why, oh why did I pick the red pill?”

  • http://www.sxqing.com/link.php?url=http://tvonline5.com/ Tv Online

    This post gives clear idea in support of the new people

    of blogging, that in fact how to do blogging.