The attack started with a targeted phishing attack against a reseller for Melbourne IT. The company later revealed that it was one of its resellers whose account was actually compromised. The Syrian Electronic Army that publicly supports Syrian President Bashar al-Assad took credit for the attack via Twitter. The affected DNS records have been reverted back to their original values and have been locked from further modification at the.com registry level. Twitter.com, huffingtonpost.co.uk and twimg.com — a domain owned by Twitter — were not affected by the attack.”]