More serious threats target the root servers and ISPs. In 2019, a hacker group known as Sea Turtle compromised a Swedish Internet service provider and the Domain Name System for the Saudi Arabian top-level domain .sa. This was a sophisticated hacking operation that pointed to state-sponsored actors, though nobody was able to pinpoint their motives. (Maybe they had a grudge against countries beginning with the letter S?)
.sa
