The SpamCannibal blacklist service was hijacked since Wednesday morning, attackers changed the DNS name server settings for the website overnight. The DNS record for the blacklist service pointed at a rogue server controlled by attackers that likely used it to deliver malware and to alter the results of queries to the blacklist. The service was offline since last summer, but attackers set a wildcard domain so that any subdomestic of spamcannibal.org returns an IP address, with this trick the domain was interpreted as blacklisted.”]
Source: https://securityaffairs.co/wordpress/73069/hacking/spamcannibal-hijacked.html