Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
IT Technology

Web-Based Office Suite Zoho Taken Offline By Registrar After Alleged Phishing Complaints (techcrunch.com) 66

New submitter atxlakeshore writes: On Monday, ICANN-approved domain registrar Tierra.net turned off access to all Zoho domains, affecting 40 million customers worldwide. Zoho, a web-based office suite company, which provides customer relationship and invoicing services to small businesses, tweeted that the site was 'blocked' earlier in the day by Tierra.Net, which administers its domain name.

Zoho customers affected by the disruption reached out to the registrar's support chat and email. Tierra.net then discussed Zoho's account details with these third parties, claiming that phishing attempts were originating from Zoho's webmail service, and these attempts necessitated blocking the company's domains. Zoho is a privately held India-based competitor to Google's G Suite platform, and maintains US offices in Austin, Texas. The dispute has resulted in calls for censure from ICANN.
In a series of tweets, Zoho CEO Sridhar Vembu said TierraNet blocked the domain without "ever notifying us of any issue." He also expressed frustrations at not being able to easily reach out to TierraNet executives.
This discussion has been archived. No new comments can be posted.

Web-Based Office Suite Zoho Taken Offline By Registrar After Alleged Phishing Complaints

Comments Filter:
  • by Anonymous Coward

    It seems the rule of law is breaking down and the presumption of innocence is no longer required and instant guilt is all that's required.

    • I don't think that's true at all. If you look back in history, mob justice was rife and there were people who were outright killed (often in unpleasant ways) over false presumption of guilt. If you're instaed referring to the court of public opinion, that's always existed and if it seems worse now, it's only because social media and global news put every bit of it at your fingertips. Twitter and Facebook are just water coolers for the entire world to share.

      I wouldn't be surprised if Tierra.net knows they
      • Once a proper scapegoat has been found and some poor bastard is made to lean on their sword everything will be cleared up.

        What's taking so long? This aspect of business is ripe for disruption. Think getscapegoat.com - simply let it deep-search through your business data then only seconds after all data has been gathered, by the magic of artificial intelligence, the most plausible scapegoat is found.

        CTA: Insulate yourself from consequences, getscapegoat.com now!

    • by dnaumov ( 453672 )

      What's hysterical is people out there in the world working under the assumption presumption of innocence actually exists in places outside the courtroom.

    • If you're bringing Kavanaugh into this unrelated topic, know this. Neither he nor the accuser are in a court case, which defines who is the defendant. So let's just say both are presumed innocent - meaning that the accuser is also innocent of it being a false accusation / slander until proven guilty.

    • How does rule of law apply here, there were no legal or law enforcement groups involved?

  • by Anonymous Coward

    Here's something else ICANN will happily do: You know those emails that come once a year asking you to verify your domain registrant contacts? If you fail to click and verify your address (no matter if it hasn't changed in 20 years) ICANN will also suspend your domain. Though the suspension is miraculously immediate, it takes 6-8 hours to be reinstated.

  • by Anonymous Coward

    Millions of business are losing revenue and data because of this. It is ridiculous that a registrar would take such an arbitrary action knowing full well the impact it would have.

    • This is exactly why I will not use a cloud service for something vital like this. Yes: it might be cheaper, more convenient, need less administration, ... but if it suddenly goes away and you cannot access your documents -- how much of a business do you have left ? Most of the large vendors seem to be pushing cloud solutions ... I fear a meltdown sometime, not all of it, but enough to badly damage some companies.

      So: run your own core IT servers, do your own backups, etc. Be safe.

    • On one hand, Tierra.Net is a small company in decline. They have a 1.5 star rating on WHTOP and have lost over 1/3 of their customer base in the past 5 years. On the other hand you have Zoho, who is a large company with a 1.5 star rating on trustpilot. What happens when two 1.5 rated companies work together? Well, this.
  • Migrated Off Zoho (Score:5, Informative)

    by brian.stinar ( 1104135 ) on Monday September 24, 2018 @04:10PM (#57370030) Homepage

    I had a client using Zoho Apps for a major portion of their infrastructure. It was terrible, with frequent outages, and tech support completely unable to help with anything. It was actually worse than not helping - they would pretend to help, and then burn three weeks of calendar time saying that they could perform a restoration, when they couldn't.

    We migrated them off of Zoho, and are grateful to have done so. I wish we would have gotten away from Zoho sooner. They are absolutely terrible, and I feel genuinely sorry for anyone using any portion of their infrastructure.

    • Who did you migrate to, hopefully someone more reliable?
      • It was an app in Zoho Apps, and I migrated that app's functionality into their existing CakePHP application. It was basically a survey building tool for medical surveys, so we had to keep track of questions, responses, order between questions/sections, and the like. Pretty much basic CRUD was all Zoho handled for the survey building. The responses were handled by the custom application.

        A company called iNetU that has been acquired like three times + name changes hosts their virtual server, and the company I [noventum.us]

  • by mysidia ( 191772 ) on Monday September 24, 2018 @04:18PM (#57370086)

    You won the lottery.... found a bad domain registrar.

    Now I suggest reaching out to CloudFlare or CSC for help transfer your corporate registrar services to; even if it costs $50K a year --- it's better than registering your domain on some fly by night operation ICANN should've discredited for thinking they're the internet police and shutting down domains based on bogus "phishing site" or other charges which have nothing to do with the DNS system.

    • They could go with SafeNames. Rock solid and all for the price of a couple of beers a year per domain name.
  • I guess a Mercedes GLS is a competitor to a Radio Flyer... Zoho is WAY more than G Suite...
  • "In a series of tweets, Zoho CEO Sridhar Vembu said TierraNet blocked the domain without 'ever notifying us of any issue.' He also expressed frustrations at not being able to easily reach out to TierraNet executives."

    Coincidentally, Microsoft and Google announced that carefully-selected business executives have been offered the opportunity to attend multi-week, all-expense-paid team-building retreats at luxury resorts in Thailand and the Bahamas.

  • by misnohmer ( 1636461 ) on Monday September 24, 2018 @06:59PM (#57370746)

    The higher the reliance on a centralized cloud, the more "eggs in the same basket" which break on a whim of some paper pusher in a company you don't control, caused by their incompetence, by their own beliefs or by some viral social outrage. Then of course there is "if we loose your data all you get is your monthly subscription cost back for this month", or "sorry, we're not going to fight a government request for your data", "we're shutting down the service, all the content you purchased and/or created is now gone". The industry keep cycling between centralized and decentralized computing. I wonder when the cloud based services are going to go the way of a mainframe.

    • No. It highlights the danger of not vetting vendors. There's nothing here cloud specific. A shitty vendor had a poor step with a crappy 3rd party that had the ability (and exercised it) to bring them down.

      I mean shit I had this same example on a welding job recently. Company we engaged didn't have the necessary quality control to vet their sub contractors and ensure that they wouldn't suddenly leave them high and dry during a critical day. Fortunately we identified this months ago and had a plan b ready.

      The

      • Show me one cloud vendor who will pay for actual losses cause by their outages (rather than maybe refund this months fee), or one that will not provide government with data they request or simply provide a back-door. It's nice how many providers claim 99.999% availability but are unable to offer insurance against it assuming those odds (for example break even insurance would be I pay $1 per day, and for outage I get paid $100,000 per day, or $69.4 per minute, if they paid $50/minute of outage and charged $1

        • Show me one cloud vendor who will pay for actual losses cause by their outages

          Amazon, Microsoft, Google to name a few. Just because you're using a shitty little free service doesn't mean that enterprise contracts don't have very long and strict performance metrics with legal teams on both ends.

          or one that will not provide government with data they request or simply provide a back-door.

          Rather than asking to prove a negative, you can start by displaying the positive.

          It's nice how many providers claim 99.999% availability but are unable to offer insurance against it assuming those odds

          And yet that insurance is precisely what is in enterprise contracts.

          But ultimately your complaints are completely off point. Before you start incorrectly criticizing the reliability and insurance of cloud based ven

  • This is totally wrong!

    Unless, you know, Zoho was promoting a political opinion I didn't like, or something. In that case de-platforming is totally cool.

Your own mileage may vary.

Working...