Neglected assets

Subdomain is under risk of a takeover

Risk Level

Hazardous (3)

Platform(s)
  • N/A

Compliance Frameworks

Description

The subdomain CNAME record is redirecting to a subdomain which is not in use anymore and can be registered by anyone. If the domain is not registered and controlled by a trusted party, it could potentially be used for malicious purposes. For example, an attacker could register the domain and use it to host a phishing site or other malicious content, and users who are redirected to the domain via the CNAME record could be at risk of falling victim to these attacks
  • Recommended Mitigation

    It is recommended to remove the CNAME record for this subdomain or take control of the CNAME target yourself