Last night between 22:52 and 23:39 occurred an unauthorized change to 106 NS records managed by the RNIDS registrar „NINET Company d.o.o.“
DNS records of other registrars were never in danger of being compromised, due to the way RNIDS security system was designed.
Immediately after discovering the irregularity, access to „NINET Company d.o.o.“ to the DNS records was blocked. The restoration of the correct NS records is ongoing.
Using security flaws in the „NINET Company d.o.o.“ online registration system, but primarily due to the fact that „NINET Company d.o.o.“ has allowed, against RNIDS policy, for the third parties to have access to security certificates needed to access DNS records, hackers replaced NS records of many major international brands whose domain names are managed by „NINET Company d.o.o.“.