Fiserv, a multi-billion-dollar cybersecurity tech provider for financial institutions, forgot to buy the default domain used as a default in their systems email communications, according to a report. The blunder could have exposed its clients user information to anyone with a few bucks to buy a domain However, before that could happen, researcher Abraham Vegh came across the error last November. Vegh bought the domain, defaultinstitution.com, and linked it to an email address to see what would come in.
Source: https://threatpost.com/fiserv-forgets-to-buy-domain-it-used-as-system-default/164903/