I had a random 1-page static site on netlify on a subdomain I own, and deleted it a few weeks ago, but forgot to delete the DNS record pointing to Netlify. Today I got an alert from Google saying the site had been "hacked." When I went to it, it was a framed version of ESPN India. My domain name account seems secure... I deleted the subdomain record. But can someone explain what happened? For a couple of weeks I guess the subdomain record was pointing to Netlify but Netlify wasn't serving it. SO.... someone hijacked it somehow?

Blogger at ribbonfarm.com, running summerofprotocols.com, host of /gloom ☀️

subdomain takeover https://www.perplexity.ai/search/i-had-a-random-1-page-static-s-2dvaJBK_TsS2CShvqhPEjA

Yes, I figured it out via ChatGPT after posting that. Looks like someone else with a netlify account simply started serving something there.