Broken Link Hijacking (BLH) is a form of cyber attack that occurs when an attacker takes over an unused domain or URL that is still linked by other websites or applications. These inactive domains can be exploited for various malicious activities, such as spreading malware or conducting digital scams (phishing).

BLH attacks can have serious impacts on individuals and organizations. Some of the risks that can be caused include:

• PhishingAttackers are using hijacked domains to steal users' personal data.
• Malware DistributionCompromised websites can be used to infect devices with dangerous viruses.
• DefacementThe original normal site display can be changed into a page that damages its reputation.
• ImpersonationThe attacker pretends to be an official party and spreads false information.
• Stored XSSA broken link takeover can be injected with malicious scripts that run when the site is visited.
• Reputational DamageUsers redirected to malicious sites can lose trust in the related institution or brand.

1. Microsoft Passport (1999)
   Microsoft briefly lost control of the domain passport.com, which was used for Hotmail services. A user successfully purchased the domain, which if misused could have been fatal. Fortunately, the domain was returned to Microsoft.
2. Subdomain Takeover
   There are over 400,000 subdomains detected as vulnerable to takeover due to CNAME misconfigurations. Attackers can potentially exploit such subdomains to spread malware or steal user data.
3. JavaScript Hijacking
   If an external script is linked from a defunct domain, an attacker can take over the domain and inject malicious code to steal information or hijack user accounts.

To keep the system safe and protected from BLH threats, here are some recommended preventive measures:

1. Perform periodic link monitoring
   Regularly check all external links used in the system. Remove or fix inactive links.
2. Use Subresource Integrity (SRI)
   SRI allows systems to verify the authenticity of external content before it is executed by the browser.
3. Apply Content Security Policy (CSP)
   Limit external resources that the site can access only from trusted domains using CSP.
4. Proactively manage DNS
   Take over or redirect unused domains immediately to prevent misuse by others.

Broken Link Hijacking is a real threat that often goes unnoticed. Broken links that are left unattended can become an entry point for attackers. Therefore, it's important to always be vigilant, conduct regular monitoring, and proactively implement security measures.

If there are any issues, please contact us at WhatsApp follows 0813-1980-0200 and email dtijkt@telkomuniversity.ac.id

Hello Harmony, Excellence, Integrity

Information Technology Support