On Friday 25 January, accredited registrar Drop.com.au notified auDA and AusRegistry that certain proprietary data files on its servers were accessed without authorization.
In accordance with auDA security policies and procedures, the Drop.com.au connections to the registry were immediately suspended pending further investigation. Drop.com.au cooperated with auDA and AusRegistry to address the incident and Drop.com.au was reconnected to the registry on the morning of 28 January.
This incident is restricted to Drop.com.au systems and only affects Drop.com.au customer data. Registry systems, data, infrastructure, and services are not affected.
However, as a precaution all domain name passwords have been updated by the registry for all registrants with domains managed by Drop.com.au.
Drop.com.au has informed customers that their customer account information including user names, passwords, email addresses and encrypted credit card information may have been accessed by unauthorised individuals.
Enquiries can be directed to the Drop.com.au support address: [email protected]