Last week’s hours-long outage at on-line workspace startup Notion was brought on by phishing complaints, in keeping with the startup’s area registrar.
Notion was offline for many of the morning on Friday, plunging its greater than 4 million customers into group darkness due to what the corporate known as a “very uncommon DNS concern that occurred on the registry operator stage.” With the corporate’s area offline, customers had been unable to entry their recordsdata, calendars, and paperwork.
We're experiencing a DNS concern, inflicting the location to not resolve for a lot of customers. We are actively wanting into this concern.
— Notion Status (@NotionStatus) February 12, 2021
Notion registered its area title notion.so by way of Name.com, however all .so domains are managed by Hexonet, an organization that helps join Sonic, the .so top-level area registry, with area title registrars like Name.com.
That complicated internet of interdependence is largely what led to the communications failure that resulted in Notion falling offline for hours.
In an electronic mail to TechCrunch, Name.com spokesperson Jared Ewy stated: “Hexonet acquired complaints about user-generated Notion pages linked to phishing. They knowledgeable Name.com about these studies, however we had been unable to independently verify them. Per its insurance policies, Hexonet positioned a brief maintain on Notion’s area.”
“Noting the affect of this motion, all groups labored collectively to revive service to Notion and its customers. All three groups are actually partnering on new protocols to make sure any such incident doesn’t occur once more. The Notion workforce and their avid followers had been responsive and a pleasure to work with all through. We thank everybody for his or her endurance and understanding,” stated Ewy.
There are a number of threads on Reddit discussing issues about Notion getting used to host phishing websites, and safety researchers have proven examples of Notion utilized in lively phishing campaigns. A Notion worker stated virtually a yr in the past that Notion would “quickly” transfer its area to notion.com, which the corporate owns.
Notion’s outage is sort of an identical to what occurred with Zoho in 2018, which like Notion, resorted to tweeting at its area registrar after it blocked zoho.com following complaints about phishing emails despatched from Zoho-hosted electronic mail accounts.
It seems like there’s no speedy hazard of a repeat outage, however Notion didn’t return TechCrunch’s electronic mail over the weekend asking what it plans to do to forestall phishing on its platform sooner or later.
- Online workspace startup Notion hit by outage, citing DNS points
- Ancestry says it fought two police requests to look its DNA database
- A webcam app left 1000’s of consumer accounts uncovered on-line
- Extra Crunch: A hacker tried to poison Florida city’s water provide