An American citizen put corp.com domain for an auction hoping that Microsoft will buy it to protect its customers from security breaches. The company acquired the domain without disclosing the final price, reports ZDnet.
Hundreds of thousands of Windows PCs are constantly trying to share sensitive data with corp.com. due to the problem known as “namespace collision,” a situation where domain names intended to be used exclusively on an internal company network end up overlapping with domains that can resolve normally on the open Internet.
Windows computers on an internal corporate network validate other things on that network using a Microsoft innovation called Active Directory, which is the umbrella term for identity-related services in Windows environments. In practical terms, this means that whoever controls corp.com can passively intercept private communications from hundreds of thousands of computers that end up being taken outside of a corporate environment that uses this “corp” designation for its Active Directory domain.