Comcast Briefly Loses Control of Its Domain Name

Fallen Andy notes that Comcast, one of the largest US ISPs, lost control of its domain name to what appeared to be juvenile social engineers of the old school — i.e. not in it for the money. The intruders got into Comcast's registrar account at Network Solutions and repointed the domain's DNS records. A blog entry at SANS points out how trivially easy this can be. Reader ElvenKnight points out an insightful interview up at Wired with the two young guys who perpetrated the hack.

The consequences might not be as fun

[Rosco+P.+Coltrane]

the two kids who perpetrated the hack

How much do you bet the feds will come down hard on the kids and charge then with felony, cyber-"terrorism" or some other preposterous computer crime? I used to do harmless hacks for fun in years past, but these days it's not really wise.

Re:The consequences might not be as fun

[Scutter]

How much do you bet the feds will come down hard on the kids and charge then with felony, cyber-"terrorism" or some other preposterous computer crime? I used to do harmless hacks for fun in years past, but these days it's not really wise.

That was hardly a "harmless hack". There is a lot of money tied to that domain and when it's down, it's a serious problem for a lot of people. That said, I agree that charging them as cyber-terrorists would be severe overkill.

Re:The consequences might not be as fun

[shawn(at)fsu]

I personally couldn't care less what they charge them with. If you going to do something so high profile you better expect that your punishment is going to be equally if not more so. I hope for them it was worth it.

Re:The consequences might not be as fun

I did RTFA and frankly the kids deserve some serious community service time.

If they had done it for a reason (say, to put up a message to Comcast's customers about Bittorrent interference or monopoly exploitation) then it would have been cool. But this? A pair of stoners just screwing around? 1000 hours of pulling weeds and painting roads seems appropriate for being such an embarrassment to geeks everywhere.

Re:The consequences might not be as fun

that's if they get caught. hope they don't

Re:The consequences might not be as fun

Good job not even reading TFS.

Re:The consequences might not be as fun

[morgan_greywolf]

So some kid who "tags" an abandoned building and gets caught gets to spend the night in jail, but throw the book at some kid who, through some feat of ingenuity, manages to "tag" the Washington Monument?

That seem fair to you?

Re:The consequences might not be as fun

[Scutter]

It was a terrorist attack intended to disrupt a major part of the infrastructure, period.

Oh, really? You were there? You know what they were thinking? How do you know it wasn't a couple of punk kids just screwing around and not realizing what they were getting themselves into?

I never said they shouldn't be charged. I (and the parent I responded to) both just said that they will likely be charged with much more than the crime warrants.

Re:The consequences might not be as fun

[bconway]

It was hardly harmless. They changed all the important host entries, including mail servers, and harvested logins of customers. I don't think many people would be happy if pop.gmail.com was redirected unbeknownst to user and their password was given away with a click (or auto refresh).

Re:The consequences might not be as fun

[parcel]

It was a terrorist attack intended to disrupt a major part of the infrastructure, period. Methinks you have an overly broad definition of "terrorist attack". One really ought not to put "couldn't check e-mail for 3 hours in the middle of the night" in the same category as the willful destruction of human life.

Re:The consequences might not be as fun

[maxume]

What if they charged them with cyber-murder?

They need to face consequences, but they need to face appropriate consequences.

Re:The consequences might not be as fun

[parcel]

harvested logins of customers. FTFA:

Fellow hackers, relying on press reports claiming that customer data may have been compromised, are hitting up the duo for passwords to Comcast e-mail accounts, which they say they don't have. "Nobody was listening in on the ports to try and get usernames and password," says Defiant. "We could have, but we didn't." (On this point, Comcast and the hackers agree).

Re:The consequences might not be as fun

[quitte]

So I should be punished more for taking a dump on George W's lawn than on yours?
I always thought it's what you are doing that decides the punishment not who you are doing it to. And I wouldn't want it to be any other way.

Re:The consequences might not be as fun

[swillden]

I personally couldn't care less what they charge them with. If you going to do something so high profile you better expect that your punishment is going to be equally if not more so.

I think they've figured that out... now. From the Wired interview:

"The situation has kind of blown up here, a lot bigger than I thought it would," says Defiant, a 19-year-old man whose first name is James. "I wish I was a minor right now because this is going to be really bad."

They claim they called Comcast's technical contact and told him they'd taken control of the domain, BEFORE they changed anything. I don't know if it'll help them in court, but it sounds like if he hadn't blown them off, it really would have been a harmless prank. That doesn't justify their decision to redirect, but the Comcast guy should have at least bothered to check.

After they were blown off by him, these punks lost their tempers:

"I was trying to say we shouldn't do this the whole damn time," says Defiant.

"But once we were in," adds EBK, "it was, like, fuck it."

Well, I hope they had fun, because they're going to be paying for it, big time.

Re:The consequences might not be as fun

since when "what they were thinking" is an excuse to break law?

Re:The consequences might not be as fun

[D+Ninja]

No, it does not seem fair. But, as the GP poster pointed out, life isn't always fair. People/companies with a high profile want to set an example out of people like these two guys so it doesn't happen again.

Hopefully the judicial system will dish out the appropriate punishment and won't get caught up in the hype. I wouldn't hold my breath, though.

Re:The consequences might not be as fun

[Scutter]

since when "what they were thinking" is an excuse to break law?

It's not an excuse and that's why they should be charged with something. However, intent is a huge factor when determining what to charge someone with. For example, it's the difference between first degree murder and involuntary manslaughter. Either way, someone's dead, but one crime involves a possible death penalty for the perpetrator.

Re:The consequences might not be as fun

[Dan541]

Messing with someone's domain is hardly a "harmless" activity.

Re:The consequences might not be as fun

[AioKits]

These days everything is a terrorist attack...Cause you know, I guess it's better to live in uninformed fear than to point out something foolish, cause the later would be unpatriotic and something terrorists do! >.>

Re:The consequences might not be as fun

[something_wicked_thi]

Since they invented the difference between first and second degree murder. Intent matters.

Re:The consequences might not be as fun

[quanticle]

How do you know it wasn't a couple of punk kids just screwing around and not realizing what they were getting themselves into?

These kids used social engineering to deliberately steal the domain name of one of the largest ISPs in the nation. This isn't equivalent to a kid stumbling across a XSS or SQL injection attack in some web app.

Re:The consequences might not be as fun

[DigDuality]

A terrorist attack would imply one of two things. A) Someone got harmed or B) Terror was instilled in a mass population due to the threat of being harmed. Other than creating some headaches over at comcast for a few hours, no one was harmed. Get a grip on reality.

Re:The consequences might not be as fun

[pthor1231]

It isn't, which is why your parent wasn't suggesting not prosecuting, but rather using the "what were they thinking" as a mitigating factor in determining what punishment is appropriate.

Re:The consequences might not be as fun

[quanticle]

Well, yeah. Saying that the effect of tagging an abandoned warehouse is the same as the effect of tagging the Washington Monument is like saying the cost of denting a rusted out Geo Metro is the same as the cost of denting a brand new Ferrari.

Re:The consequences might not be as fun

[elysiana]

Not positive, but I don't think that's what the parent was getting at... rather the fact that if you go after such a high-profile company, you're bound to have someone come down on you, and these guys should have been expecting that. If they had gone after Joe Blow, they probably could have gotten away with a slap on the wrist with a wet noodle, because Joe Blow isn't going to have the power, time, or money to prosecute.

Re:The consequences might not be as fun

except if they had their MX set to catch all incoming email during that time and intercepted a few juicy ones, things could get interesting ;)

Re:The consequences might not be as fun

[Stewie241]

Can we stop calling them kids? Age of majority is 18 in the states, isn't it? These two were 18 and 19 years old. Young, sure, but kids, no. These are adults.

Re:The consequences might not be as fun

[bconway]

Read (some of) the 25+ page discussion on Broadband Reports, linked in the article. Ports 25 and 110 were active and accepting connections, followed by rejecting all logins are (presumably) harvesting their credentials. My Nmap scans during the event are included in that thread.

Re:The consequences might not be as fun

[Pazy]

Hardly a terrorist activity, since they never intented to cause terror :| They were messing around and got over there head, they need some sort of punishment but not "Cyber Terrorism". Plus after words if Comcast (or anyone else) has any sense they need to hire them and get to them to fix flaws rather than exploit them (which according to the wired article one of them wanted to report it anyways).

Re:The consequences might not be as fun

[kv9]

It was a terrorist attack intended to disrupt a major part of the infrastructure, period. so they haven't found a cure for acute kneejerk yet, eh?

Re:The consequences might not be as fun

[wattrlz]

That was hardly a "harmless hack". There is a lot of money tied to that domain and when it's down, it's a serious problem for a lot of people. That said, I agree that charging them as cyber-terrorists would be severe overkill. And if they had been from China, Iran, Pakistan, or Syria, would you still think the same thing? ...

Well, of course not! Those countries are all theocracies. Theocracies are evil, or so my Christian leader tells me... This is a joke, obviously, but what interest would Syrian hackers have in Comcast?

Re:The consequences might not be as fun

[pz]

Did you read TFA? They had to work very hard, all night long to maintain their redirected pages, cycling through 50 different (presumably free) hosting accounts, repeatedly moving the DNS entry. They could have just given back the registration, but instead they worked for hours to maintain the disruption, going without or sleeping very little. That sounds like evidence of intent to cause harm. But, if the quote in the Wired article is genuine, there is no question about it being intentional harm with wide impact, and therefore terrorism: "Comcast is just a huge corporation, and we wanted to take them out, and we did."

Re:The consequences might not be as fun

[leonardluen]

yeah...ain't that nice, they said they didn't...maybe i am just paranoid, but i already changed my passwords

Re:The consequences might not be as fun

[phoenixwade]

It was a terrorist attack intended to disrupt a major part of the infrastructure, period.

Oh, really? You were there? You know what they were thinking? How do you know it wasn't a couple of punk kids just screwing around and not realizing what they were getting themselves into?

I never said they shouldn't be charged. I (and the parent I responded to) both just said that they will likely be charged with much more than the crime warrants. The Wired article indicates that they were retaliating because some Comcast dweeb was rude on the phone. It also indicates that they were stupid enough to be surprised by how big and loud this blew up. Further, it indicates this is a repeat offense for both "hackers". If all that is true, then I submit there is very little chance they are going to be charged with more than the crimes warrant. Repeat offenders and that kind of petty extortion should be slapped as hard as possible.

Re:The consequences might not be as fun

[Mizchief]

They should throw the book at these kids. Given how easy it is to do these types of attacks the fear of punishment is needed.

Re:The consequences might not be as fun

[Jellybob]

If try that one, then I'm fairly sure you won't be around long enough to have someone make an educated decision about how to punish you.

Re:The consequences might not be as fun

Stuff like this needs to happen so that corporate America can wake the $uck up! It also points out how much risk these companies are willing to take on security all with our money.

Since terrorism is the new buzz word, if nothing else that is what they will be labeled. Agree with it or not the real issue here is how blatantly our Government has the backs of companies and not the people, scary times are here -

Re:The consequences might not be as fun

[berzerke]

Just because the ports were active does not mean any usernames/passwords were recorded. The server could have simply been set to reject all attempts.

I wouldn't lay money on that scenario mind you, but it is possible.

Re:The consequences might not be as fun

[Hoi+Polloi]

Since when did vandalism and theft become terrorism? The definition of terrorism has become so wide and vauge that anything that affects a group of people gets the terrorism lable slapped on it. It is like how the definitions of addiction or sex crime have become catch-all nets. Terrorism is a violent act intended to cause intimidation to achieve a goal. These kids just wanted to show off and feel powerful. I have no sympathy for them or their obnoxious, selfrightious attitudes but they aren't terrorists.

Re:The consequences might not be as fun

[morgan_greywolf]

Well, yeah. Saying that the effect of tagging an abandoned warehouse is the same as the effect of tagging the Washington Monument is like saying the cost of denting a rusted out Geo Metro is the same as the cost of denting a brand new Ferrari.

Since when did the monetary cost of a crime determine its punishment?

The premeditated murder of a drug dealer and the premeditated murder of famous Hollywood celebrity certainly have different economic impacts, but both are capital offenses punishable by (at the very least) life imprisonment.

Re:The consequences might not be as fun

[parcel]

yeah...ain't that nice, they said they didn't...maybe i am just paranoid, but i already changed my passwords Not paranoid, wise. It sounds pretty unlikely that any harvesting was going on, but still better to be safe.

Re:The consequences might not be as fun

[Pantero+Blanco]

It was a terrorist attack intended to disrupt a major part of the infrastructure, period.

Terrorism, by definition, has to have some sort of political goal in mind (wanting power, autonomy, etc), and has to have the intention of intimidation. This has neither.

I don't see anyone shaking in fear over Comcast's website being inaccessible...

It's just a regular crime, not terrorism.

Re:The consequences might not be as fun

[Hoi+Polloi]

Excuse me but after seeing Rachel Ray in her Hamas video (don't tell me it was a scarf!) it is critical that we watch for 5th column terrorists everywhere. Fox News and all the other right-wing nut jobs told me so.

Excuse me while I listen to Barry Goldwater rolling in his grave.

Re:The consequences might not be as fun

[vslashg]

harvested logins of customers.

FTFA: Fellow hackers, relying on press reports claiming that customer data may have been compromised, are hitting up the duo for passwords to Comcast e-mail accounts, which they say they don't have. "Nobody was listening in on the ports to try and get usernames and password," says Defiant. "We could have, but we didn't." (On this point, Comcast and the hackers agree). You have to consider the sources here; both sides have something to lose by claiming usernames and passwords were stolen. If the boys admit to stealing accounts, they're looking at a harsher sentence when this all comes crashing down. If Comcast admits accounts could have been compromised in this attack, they are facing a rather nasty security-related PR problem.

Re:The consequences might not be as fun

[daliman]

terrorism You keep using that word. I do not think it means what you think it means. ...

Re:The consequences might not be as fun

[sgbett]

Man, if I had mod points you'd be getting -1 Terrorist for those kind of subversive opinions!

Re:The consequences might not be as fun

[Hoi+Polloi]

Yes, yes it does. So if they burnt down someone's business they should get the same punishment as if they burnt down an abandoned shack in the woods? They may be clever enough to turn off the fire alarm so they lets them off the hook?

Re:The consequences might not be as fun

[Pantero+Blanco]

Since when did the monetary cost of a crime determine its punishment?

...Since centuries ago (possibly even millenia, though probably not in the US for obvious reasons), and it's been consistently upheld.

The premeditated murder of a drug dealer and the premeditated murder of famous Hollywood celebrity certainly have different economic impacts, but both are capital offenses punishable by (at the very least) life imprisonment.

Yeah, and which one is more likely to actually get life in prison? Unless the murder of the drug dealer was by a rival drug dealer or gets tagged as a "hate crime", the killer's more likely to get 20 than life (and may even get paroled before that).

You don't think someone who steals a laptop is likely to get the same sentence as someone who steals a candy bar, do you?

Re:The consequences might not be as fun

[thePowerOfGrayskull]

I'd say that their actions and attitudes quite clearly show that they're still kids. Turning 18 isn't a magic pill that instantly makes you an adult -- only time and experience can do that, regardless of the law.

Re:The consequences might not be as fun

[girasquid]

I know a couple people who become terrified when they can't check their e-mail - to the point of attempting to cause me harm - does that count?

Re:The consequences might not be as fun

[Hijacked+Public]

Since when did the monetary cost of a crime determine its punishment? Since Babylon? An eye for an eye and such. Or more directly, fines could be levied that were determined "according to the enormity of the offence".

Re:The consequences might not be as fun

[egyptiankarim]

It's totally fair. An abandoned building has little to no value and if these kids managed to hack some squatted domain, they probably wouldn't get much flack.

The Washington Monument is a highly visible, highly valuable, historic landmark and if you deface it it affects a lot more people.

I don't know about anyone else, but your analogy just made it easier for me to see fault in these kids' actions.

Re:The consequences might not be as fun

They come across as a couple of wanna-bes who are full of themselves. All of the clichéd "l33t speak" is just the icing on the cake. How much do you want to bet they were rude to the Comcast manager they called? Then they spent 5+ hours struggling to keep their prank going even though it was obvious they were hurting millions of users. That doesn't sound like a prank. They couldn't even explain a justification of why they did it (beyond the selfish thrill) so they tossed out the lame "Because Comcast is big" excuse. Even their fellow trolls came out of the woodwork looking for passwords to further make life miserable for some innocent people.

Here is hoping they end up in federal "pound me in the ass" prison.

Re:The consequences might not be as fun

[Lobster+Quadrille]

Life isn't fair, but the judicial system is supposed to be.

Re:The consequences might not be as fun

[Stewie241]

yeah 'cause adults never do stupid things.

Re:The consequences might not be as fun

[Chris+Mattern]

Since when did the monetary cost of a crime determine its punishment?

Since always, basically. The prime example would be theft, which has always been both a misdemeanor or a felony, depending on how much is stolen.

The premeditated murder of a drug dealer and the premeditated murder of famous Hollywood celebrity certainly have different economic impacts, but both are capital offenses punishable by (at the very least) life imprisonment.

With crimes against persons, any monetary impact is considered so secondary as to not be worthy of consideration, generally (a few centuries back, this wasn't the case; in medieval law, if you murdered somebody rich and important, the penalty was indeed greater than if you murdered a serf). With crimes against property, the monetary impact is basically the point. This was a crime against property.

Re:The consequences might not be as fun

[SomeoneGotMyNick]

Since when did vandalism and theft become terrorism? Since society and officials are too lazy to secern those things.

Blowing your nose in public threatens to spread pathogens to innocent bystanders, too.

Re:The consequences might not be as fun

How do you know it wasn't a couple of punk kids just screwing around and not realizing what they were getting themselves into?

These kids used social engineering to deliberately steal the domain name of one of the largest ISPs in the nation. This isn't equivalent to a kid stumbling across a XSS or SQL injection attack in some web app.

The government and Comcast can come down hard on these kids - but that's not justice, what it is is covering their asses.

We base our economy upon something this fragile, and then when someone points it out we come down on them really hard.

Imagine if a real attack takes place?

They should thank the kids, ask them not to do it again, and takes steps to prevent it from happening again.

But will that happen - don't make me laugh.

It's like the rest of the U.S. phoney as can be when it comes to real domestic security.

Re:The consequences might not be as fun

[TapeCutter]

"there is no question about it being intentional harm with wide impact, and therefore terrorism"

Okaaaaaayyyy.... So tell us who was 'terrified', and what was it that 'terrified' them?

Re:The consequences might not be as fun

Sure, but 18 is supposed to be the average age that people have accumulated enough "time and experience" to be considered responsible enough to be treated like adults. It's not perfect, but what is?

Re:The consequences might not be as fun

[Akita24]

While I in no way condone what they did, I do see a certain amount of poetic justice in the assholes who "hijack" their users packets getting hijacked themselves. How do you like it when they do it to you you greedy f*cks? Not fun is it CommieCast?

Re:The consequences might not be as fun

I agree "terrorism" is being bandied about a little bit too much these days. However, what these kids did was far more than vandalism. Who cares if they just wanted to "show off and feel powerful"? The results of their actions probably caused a significant amount of damage to Comcast's wallet and reputation. And to its customers? Well, I sure hope they didn't change the domain's MX records in addition to its A records, because that opens up a whole other bigass can of worms.

So yeah, maybe it's not terrorism in the more violent sense, but I'll be damned if they get off with a slap on the wrist. Throw the book at them (and then some) so other loser douchebags like them think twice before trying to brag about the size of their internet penises.

Re:The consequences might not be as fun

As someone whose company website (which accounts for a significant portion of our revenue) got severely DDoS'd a few years back, our experience sure felt like an act of terrorism and it was far from being harmless.

Then again, if you've never been on the other side of something like this (as I'm assuming is the case with you) it's probably hard for you to understand the repercussions of such "harmless hacks" in terms of dollars and stress. Apologies if you have, but it seems as though many Slashdotters are naively trying to defend the indefensible actions of these two, which I find absolutely ignorant.

Re:The consequences might not be as fun

[TapeCutter]

I'm an Aussie and when I read about the dunkin' doghnut ads I thought the same thing. OTOH, what is it they say about publicity?

Re:The consequences might not be as fun

[UnderCoverPenguin]

Well, even if just charged with simple disruption of service, there would be 14,000,000 counts of it. A very token-ish 1 minute per count would add up to over 26 years in prison, while a less token-ish 1 hour per count would be almost 1600 years.

Seems to me that even a just-graduated, newly hired, junior assistant prosecutor should be able to persuade even a "soft" judge to order at least 5 years

Re:The consequences might not be as fun

[Anonymous+Psychopath]

...there is no question about it being intentional harm with wide impact, and therefore terrorism... Wow, I didn't realize that's how terrorism is defined. With my newfound knowledge, here are some other examples of terrorism:

Pollution
2girls1cup
Enron
goatse.cx
PATRIOT Act
DMCA
The Pirate Bay

Incredible. We can call almost anything terrorism now! Thank you!

Re:The consequences might not be as fun

No one was harmed? How about Comcast? Do you realize the amount of money and reputation they had to bleed in order to rectify the situation, or are you assuming that because they're a corporation they're fair game for script kiddie fucktards like these two?

Re:The consequences might not be as fun

[dwater]

I thought it was kind of funny :)

Sure it wasn't deliberate, or is it just my zany English sense of humour?

Re:The consequences might not be as fun

[mR.bRiGhTsId3]

While analogies are useful, I think this one is stretched beyond usefulness. Neither George W's lawn or my lawn has any economic value. Comcast's domain name does, as its serves whatever percentage of their customer base actually have it set as their homepage.

Re:The consequences might not be as fun

[Viceroy+Potatohead]

Exactly.

Just the other day, I had a fast food burger, and the terrorists left out the pickle. Then I went to get gas, but the pump had been broken by terrorists. After finally getting gas, I discovered the terrorists have been jacking up fuel prices so I didn't have enough cash. The terrorists must have been disrupting the banking system, because it took several minutes to access my funds by debit card. The terrorists had been messing with the stop lights as well, since they were completely out of sync.

Finally, I got home and discovered my wife must be a terrorist, since she overcooked the roast. Then I tried watching the news, but terrorists kept interrupting it with ads for things I didn't want to buy. Disillusioned, I decided to go throw a ball around with my son Billy. It's one of the few pleasures I can still find in this dangerous, terror-infested world. You wouldn't believe what happened! My son threw the ball badly, and I got a grass stain on my slacks when diving for it. I'm afraid I'll have to call DHS and get them to start a dossier on Billy now.

I hope the terrorists don't turn off my alarm clock in the night again. If I'm late for one more day of work, I'm pretty sure the terrorists in human resources are going to fire me.

Re:The consequences might not be as fun

[AioKits]

Exactly. Just the other day, I had a fast food burger, and the terrorists left out the pickle. If ever there was a call to arms, this is it! I'm with you brother!

Re:The consequences might not be as fun

[thePowerOfGrayskull]

That's not what I said. Let me spell it out -- being an adult is not something that occur at a fixed, predetermined date in your life. This begins at around the time that you truly realize that your actions have a direct effect on other people; and that other people have an existence independent of and outside of your own.

For some people, that can happen in their early teens. For most people, it's sometime in their late twenties. You can tell when it happens by conversing with people - when the conversation is no longer "me, I, me" and instead "you, us, them" (with genuine interest, not a perfunctory 'because it's polite' attitude) , it's a pretty good sign.

For the kids in question here, there's no doubt that they are still kids. The interview shows no evidence of any awareness outside of their own selves and the minor circle of peers with which they identify.

I'm sure there's a bunch of late teenagers and young twenty-somethings who will hastily mod me down (if anyone's bothering to read the thread down this far), but it is what it is.

Re:The consequences might not be as fun

[bishiraver]

Soccer moms couldn't check their webmail at 3am for the spicy email the man they're having an affair with sent them.

And maybe the son who walked in on her 'preparing' to read it.

Re:The consequences might not be as fun

[thePowerOfGrayskull]

Indeed; note that I'm not saying they shouldn't be punished as adults -- the /should/ be at a point in their lives where they've acquired the ability to function as adults in this society. I'm only saying that based on their actions -- and attitudes in the interview -- they're not adults.

Re:The consequences might not be as fun

[Jay+L]

They claim they called Comcast's technical contact and told him they'd taken control of the domain, BEFORE they changed anything. I don't know if it'll help them in court, but it sounds like if he hadn't blown them off, it really would have been a harmless prank.

It probably won't help them, but it certainly help anyone who might have been harmed - as a subscriber or a shareholder - and wants to sue Comcast for negligence...

Re:The consequences might not be as fun

[SirLurksAlot]

I hate to break it to you chief but according to the laws which we as a society have established they are indeed adults. Not that I disagree with your sentiment, but since it's the law we're concerned about here (and I'm sure they are certainly concerned about it as well) then it's the law which will define their status as adults.

Re:The consequences might not be as fun

[Lostlander]

terrorism You keep using that word. I do not think it means what you think it means. ... If I had mod points you would get a +1(Awesome) for using a quote from The Princess Bride.

Re:The consequences might not be as fun

[GregPK]

I don't think they should be charged at all. Comcast should be charged for being a bad ISP in the first place.

Re:The consequences might not be as fun

[Alrescha]

"A terrorist attack would imply one of two things. A) Someone got harmed..."

I'm sorry, this gets modded Insightful? Come on. If I kick you in the ankle you've been 'harmed', but that doesn't make it a terrorist attack.

A.

Re:The consequences might not be as fun

[FliesLikeABrick]

The Wired article/interview says that they were bouncing around web hosts like crazy. Of course if the point comcast.net to some large host, you'll see all kinds of services during your nmap scan.

They were using bunches of free webhosts who almost definitely have servers listening on imap/pop3/smtp and other services. That said, it makes sense that logins intended for comcast ended up failing when they hit these random web hosts.

Re:The consequences might not be as fun

[Brian+Gordon]

How do you know it wasn't a couple of punk kids just screwing around...

for the street address, they used the "Dildo Room" at "69 Dick Tard Lane." facepalm

Re:The consequences might not be as fun

[ZerdZerd]

They are still in their teenages. Is it better to call them teens?

Re:The consequences might not be as fun

[cliffski]

they should thank the kids, if they had NOT gone through with the hack, but informed those in authority how it had become possible.
As it was, they inconvenienced tens of thousands of people. And they didn't put up a sign that said
"We have briefly changed this page to point out a serious flaw in the security of this system. Sorry for the inconvenience.
it said:

"KRYOGENICS Defiant and EBK RoXed Comcast
sHouTz to VIRUS Warlock elul21 coll1er seven"

yes, very helpful.

Re:The consequences might not be as fun

[Tinyn]

Why isn't it? Because Comcast is big? If so, that sounds like one law for the rich and one for the poor. Comcast should be treated exactly the same as Bob's Online Pottery Store.

Re:The consequences might not be as fun

[Tinyn]

It helped encourage Comcast to fix a security issue. And all it cost was what, someone who wanted to sign up for cable service had to look up the phone number in the yellow pages instead?

Re:The consequences might not be as fun

A and B and C = Terrorist requires A to be true but that does not imply that all of A is a Terrorist.

Re:The consequences might not be as fun

You insensitive clod! I love 2girls1cup!

As they say, one man's terror is another man's treasure, eh?

Re:The consequences might not be as fun

[Alrescha]

what part of "one of two things" did you not understand?

A.

Re:The consequences might not be as fun

[Nemo's+Night+Sky]

Think again. Looks like they got adverts for t.v. shows there. It could be comcast promoting themselves or they could be getting paid by the content providers per page hit. Considering the traffic this site must get, we could be talking about some serious money. Also, there seems to be some kind of webmail or bill pay system that customers can log into. Even though those were only temporarily unavailable, they spent some cash on developing those. That being said. Screw cumcast! go kids go!

Re:The consequences might not be as fun

[SL+Baur]

So if they burnt down someone's business they should get the same punishment as if they burnt down an abandoned shack in the woods? That would depend on the locale. Burning something in the forest in California in the late summer can cause a vast amount of damage so actually I would expect someone setting fires in the forest to have a much bigger punishment.

I don't recall anyone being made an example of when all the businesses were burned in the Rodney King riots (Damian Williams was the bricker not an arsonist).

Re:The consequences might not be as fun

[Nemo's+Night+Sky]

I agree. The parent should seriously take a minute to check out wikipedia's article on -ism and find out what the word terror means when ism is suffixed.

That being said, your spice/caffeine sig is AWESOME.

Re:The consequences might not be as fun

[thePowerOfGrayskull]

I agree 100% that in the eyes of the law, they're adults -- and that is as it should be. As you've noticed, though, that wasn't what I was referring to.

Re:The consequences might not be as fun

[quanticle]

Monetary cost has always had a role in deciding the punishment. If it were not the case, stealing $1 would have the same penalty as stealing $1000.

Re:The consequences might not be as fun

[quanticle]

No. Intent is inherent to the nature of any social engineering attack. Why would they even ask for data that would compromise the system, if they didn't intend to at least threaten to use said data? Its one thing if Comcast left this data in a publicly viewable location or a company representative let it slip. But, by taking active measures to procure private data, these two have fully demonstrated their intent.

Put another way, its pretty hard to "accidentally" ask someone for their password.

Re:The consequences might not be as fun

There is absolutely no difference between interfering with their DNS registration and walking up to someone's business and severing their powerlines with an axe. This was a deliberate act of sabotage and these guys are going to do serious time for it. Not to mention the fact that they're going to owe unbelievable damages to Comcast.

I'm on Comcast's side on this one. This kind of ugly, criminal behavior on the part of people that think they're "clever" is destroying the internet and providing even more, competely understandable, rationalization for government surveillance of the net.

Nothing wrong with giving these guys 5-10 for this. Enjoy your prison time, tough guys.

Re:The consequences might not be as fun

[ResidntGeek]

You're fucked in the head if you think anything short of what these kids did would get the security hole fixed.

Re:The consequences might not be as fun

[Kryptonian+Jor-El]

Uh, this shit doesn't need to happen any more. i couldn't get my damn email when they did that crap

Re:The consequences might not be as fun

Who did this really affect? The CEO and the other executives will still get their pay checks and bonuses. The customers will continue to have to fork over large monthly fees for questionable TV and Internet service.

This only affected the little guy. The customer.

For the 3lite wannabies this is not making a statement. These guys (who are adults) were sloppy and without purpose beyond wanting to fit in to a subculture. In the end they have become a joke in the hacking community.

Hackers don't take it out on the little guy.

Re:The consequences might not be as fun

They didn't say that harm implies terrorist attack, they were saying terrorist attack implies harm.
 
Some fruits are apples, but not all fruits are apples.

Re:The consequences might not be as fun

[glitch23]

Since they invented the difference between first and second degree murder. Intent matters.

IANAL but I think intent is associated with all degress of murder, just not with manslaughter. However one of the differences beteween first and second degree murder is whether there is any malice involved.

Re:The consequences might not be as fun

[SeaFox]

I don't think they should be charged at all. Comcast should be charged for being a bad ISP in the first place.

Unfortunately, being assholes is not a crime.

Oh, wait. That cuts both ways in this case, huh? :-D

Re:The consequences might not be as fun

[real+gumby]

Okaaaaaayyyy.... So tell us who was 'terrified', and what was it that 'terrified' them? Oh come now, it's obvious: Comcast execs were terrified that profits would go into the toilet and they'd have no way of stopping it.

Re:The consequences might not be as fun

No one was harmed? How about Comcast? Do you realize the amount of money and reputation they had to bleed in order to rectify the situation, or are you assuming that because they're a corporation they're fair game for script kiddie fucktards like these two? Whatever amount of money and reputation they have to bleed is not enough. My Comcast Internet connection is my primary method of communication and source of news about what is happening in the world. I am disabled and I use Internet to buy things, to pay my bills, and to manage my bank accounts. Last Sunday morning, Comcast made a mistake and sent a technician out who disconnected my business class internet because Comcast wasn't sure whether I had returned my video receiver when I cancelled my TV service last month. For 24 hours they would not/could not explain why my service was cut off. After 24 hours, a technician came out and discovered that they had mistakenly disconnected my business internet cable at the box on the corner in an attempt to make sure I wasn't watching TV. Meanwhile they have my credit card number and have charged hundreds of dollars on it which they won't return because they cannot convince themselves that I returned the receiver even though I have the receipt. So they are holding me hostage. They control my Internet, and have a pile of my money, and calling them on the phone is one of the largest wastes of time I know of. Unfortunately I have a choice of 1.5Mb DSL (Verizon) or 16Mb Broadband (Comcast). I am so tired of their apologies and excuses. I pray to Jesus daily to help me walk his path, but I am overwhelmed with bitterness and frustration as a result of each experience with these people. Today a Comcast rep called me and told me I wold have to prove I returned the receiver to get my money back, then they hung up on me without giving me their phone number. This new understanding that they outsource their DNS explains why they could not understand my questions about the DNS parts of my business service and static IP numbers. I recently set up local DNS servers and rehosted my own DNS because I no longer trusted Network Solutions. Imagine my surprise when I learned that Comcast turned around and put my reverse DNS data right back into Network Solutions hands. Would you say I have a headache from dealing with Comcast, or something more? Yes, they haven't come to my house with automatic weapons. But on the short list of nerdy things that are important to me, such as the Internet service I depend on, and some money, my lack of control over these areas of my life threaten my daily piece of mind. For the first year of my Internet service with Comcast, I had a good experience and I didn't understand why people were complaining. Now I understand and I am struggling with a developing hatred for this company.

Re:The consequences might not be as fun

[GregPK]

it should be if you are a business...

Re:The consequences might not be as fun

[swillden]

Can we stop calling them kids? Age of majority is 18 in the states, isn't it? These two were 18 and 19 years old. Young, sure, but kids, no. These are adults.

18 and 19 year olds are legally adults, but they're still kids. I'd say you stop being a kid around 25 or so.

Re:The consequences might not be as fun

As a "grown-up" I must agree it "isn't equivalent to a kid stumbling across a XSS or SQL injection attack in some web app." It's much, much cooler.

Re:The consequences might not be as fun

[Workaphobia]

It's like taking on Rupert Murdoch. Don't be a fame glutton if you can't deal with the corporate sponsored payback.

Re:The consequences might not be as fun

I don't recall anyone being made an example of...

Huh? Since you vaguely remember only one person being "made an example of" after an event that happened nearly 20 years ago, you therefore don't think people receive harsher punishment for more serious crimes?

Re:The consequences might not be as fun

[Alrescha]

I think the context of the discussion was defining what constitutes a terrorist attack.

But here I am, responding to an AC in a thread that was dead three days ago, so what do I know?

A.

Network Solutions seems to be the common trend.

[Flamora]

Other websites that I know of have had this happen in the past, and the common trend seems to be that Network Solutions has been their domain registrar. The largest site in recent memory that this occurred to other than Comcast was SomethingAwful.

Perhaps it's a sign of a more underlying flaw in Network Solutions' security?

Re:Network Solutions seems to be the common trend.

[MoldySpore]

I think that is what most of these guys are trying to show anyway. Maybe Network Solutions should take the attack to heart and improve security, since that outage can effect so many people.

Re:Network Solutions seems to be the common trend.

[neoform]

Look at sites like apple, they use services like MarkMonitor.com, I was under the impression most large companies did this too.

Re:Network Solutions seems to be the common trend.

[swillden]

From the Wired article:

Network Solutions spokeswoman Susan Wade disputes the hackers' account. "We now know that it was nothing on our end," she says. "There was no breach in our system or social engineering situation on our end."

Sooo, what she's saying is that Network Solutions' system was operating as designed. Is that supposed to be comforting?

Re:Network Solutions seems to be the common trend.

[rcamans]

Ah, heh heh, he said 'Network Solutions' and 'Security' in the same sentence. heh heh

Dangit, Beavis, leave me alone!

Re:Network Solutions seems to be the common trend.

[tobiasly]

Other websites that I know of have had this happen in the past, and the common trend seems to be that Network Solutions has been their domain registrar. The largest site in recent memory that this occurred to other than Comcast was SomethingAwful. Perhaps it's a sign of a more underlying flaw in Network Solutions' security?

No, this serves Comcast right for being so cheap and not getting a Network Solutions Extended Validation Certificate. The green address bar would have stopped these two right in their tracks.

Re:Network Solutions seems to be the common trend.

[Bryansix]

Network Solutions sucks. They just lie in their Press Releases too. Like somehow lying about what happened is supposed to make it all better.

Re:Network Solutions seems to be the common trend.

[Bryansix]

Buahahahahahahah!

Re:Network Solutions seems to be the common trend.

[Gat0r30y]

Like somehow lying about what happened is supposed to make it all better. Of course it makes everything better! Its the american way!

These guys are my heroes

[Spy+der+Mann]

Wanna know why? Because they called Comcast and could get in touch with a HUMAN!

Now *THAT'S* hacking.

Re:These guys are my heroes

[morgan_greywolf]

You mean when they finally got someone on the phone, it actually wasn't the usual empty, soulless being from hell?

I am SHOCKED. SHOCKED I tell you!!!!

Re:These guys are my heroes

[Thaelon]

Try this: http://www.gethuman.com/gethuman_list.asp?bname=%22C%22

Lazy companies create "automated systems to handle most inquiries" ignoring the fact that even their claim states its own failing, it doesn't handle them all. So we have created a database of how to circumvent the barrier to customer support.

Now if only we could force them to hire customer support grunts without such thick accents.

Re:These guys are my heroes

[DriedClexler]

How come no one's made the obvious joke yet?

Comcast: OMG!!! Outrageous!!! Some HACKERS denied us access to our OWN DOMAIN NAME!!!! Get them!!!!
FBI: Why? They didn't take anything that belongs to you.
Comcast: What??? Out contract with ICANN gives us unlimited access to the Comcast domain!
FBI: Right. And what does unlimited mean?
Comcast: Look, it's right here in Websters: "without any ..."
FBI: No, no, not that one, use your own internal glossary.
Comcast: Okay then, "unlimited: " ... ah, okay, see your point there.

Re:These guys are my heroes

Now that is profiling right here!
Indian customer support people are humans too!

Re:These guys are my heroes

[ilovecheese]

pwn3d! Couldn't happen to a better company! :)

Re:These guys are my heroes

[Lobster+Quadrille]

Nobody's disputing the fact that they're humans, and personally I couldn't care less about the fact that the service is outsourced overseas. What irritates me is that the service is always sub-par, and the agents difficult to understand.

My company outsources its overflow support calls, a decision I've been contesting since they made it.

Re:These guys are my heroes

cause comcast will never see it that way, ever

Expiring domains

[Ojuicer]

Regarding the bit at the end about losing your domain name. Recently I had a domain name expire, and it entered a rather generous grace period followed by an extended "grace" period where I could exclusively pay money (few hundred £) to recover it just in time. According to my limited experience of 1, I'd say you'd really have to take your eye off the ball to miss this one.

Re:Expiring domains

[Flamora]

It wasn't even that Comcast's domain expired. The pair involved in this managed to gain access to Comcast's Network Solutions control panel and had full authoritative control over the domains.

Apparently, according to the linked articles, they pulled it off twice, too. This wasn't a case of "oh sweet, that's not registered anymore, yoink", it was a case of actual wresting of control.

The question is if the weakness in security lies with Comcast (i.e. a weak password for the panel) or Network Solutions (i.e. weakness in their portal, weak transmission of passwords, etc).

Re:Expiring domains

[Wavebreak]

See here for an explanation on how it was likely done. Basically, they were using email authorization and all it takes is a bogus return address. Technically a Network Solutions issue, but Comcast does deserve some of the blame for using a weak authorization method for their domain.

Luckily Comcast doesn't host common AJAX libraries

Imagine what would happen if one central host were to host widely used AJAX libraries to help with caching and that host got its DNS mangled.

I know who did it...

[Thelasko]

It was the Slowskys.

Stupid password

[MarkGriz]

FTFA: "A brute force password attack is one possibility"

Right.... it was probably 1234 (same as most slashdotter's luggage)

Re:Stupid password

[Constantine+XVI]

Missed one.

12345.

Re:Stupid password

[bsDaemon]

Wouldn't most slashdotter's luggage combo be 3142 ?

Re:Stupid password

[Kitsune818]

You've gone from suck to blow.

Re:Stupid password

[bsDaemon]

That was the combination to the door lock to the comp sci lab with the cluster and the sofas and stuff at my school. I was VP of our ACM chapter my Freshman year, so I got to know it. Still hasn't changed.

Re:Stupid password

[Bryansix]

Great! Free Sofas everybody!

Re:Stupid password

[iamstretchypanda]

Whats significant about 3142?

I found this LAPA flight and this on IPv6-to-IPv4

Re:Stupid password

[bsDaemon]

3.14159... round
it's pi.

Re:Stupid password

[iamstretchypanda]

Haha... wooosh :[. Thanks for the help though.

Everything old is new again.

[Rob+T+Firefly]

Recent memory, my eye. This same thing happened to my old zine in 1999, and the trick was already old hat back then. We even published a how-to article about it, since our specialty was old tricks everyone already thought were lame.

The best part: Network Solutions were of absolutely no help to us in getting our own domain back from the hijackers, so we ended up having to use the same trick to just steal it back again. Three times.

Re:Everything old is new again.

[Flamora]

Oh, I'm just talking of things that I've directly experienced myself. I wouldn't be surprised in the slightest if this is an old trend that's been going on for a while.

And from what was said by the admin team at SA, Network Solutions wasn't any help to them at all, either. Funny, that.

Re:Everything old is new again.

[Awptimus+Prime]

I'd imagine whoever calling NS from SA would be so hell-bent on making drama so they'd have something to post about later.

Re:Everything old is new again.

[k2enemy]

Cactus

Re:Everything old is new again.

[Bryansix]

You know if you use a real domain registrar and not Network Solutions you can put a freeze on changes to your records so this can't happen.

Re:Everything old is new again.

[Rob+T+Firefly]

Heh, it's nice to know how far they haven't come in nine years!

Re:Everything old is new again.

[Anonmyous+Coward]

Thanks for the awesome tutorial, Firefly. That attack sounds easy enough to automate. I wonder what would happen if someone wrote a script to change the domain registration info and launched it against every domain name registered with Network Solutions. You wouldn't, of course, screw with the nameservers, just the contact info. It'd be a DDOS on Network Solutions customer support lines the next morning when thousands of people called in about the "Admin contact changed" email.

Re:Everything old is new again.

[Rob+T+Firefly]

Thank RBCP from phonelosers.org, as the rightful owner of our domain at the time he was the hapless victim who wrote that piece.

I can only speculate that it's gotten easier to do bad things via NetSol over the years, given how much they seem not to care about fixing their broken stuff.

Re:Everything old is new again.

[Rob+T+Firefly]

If you told us that nine years ago we may have saved ourselves some trouble, but then again that issue of the zine would have been too short and I'd have had to write an article on dumpster-diving for bagels or something to pad it out. All's well that ends well.

Re:Everything old is new again.

[Phroggy]

Nine years ago, there were only five other registrars available and the whole system was highly experimental. Transferring to one of the new "testbed" registrars was not widely considered to be the safer option. Nobody accused Network Solutions of not being a real registrar, because a few months before they had been the only registrar.

Re:Luckily Comcast doesn't host common AJAX librar

[morgan_greywolf]

Imagine what would happen if one central host were to host widely used AJAX libraries to help with caching and that host got its DNS mangled.

Maybe he's trolling and maybe not, but he's got a very good point, you have to admit.

Some lessons from all this.

[apathy+maybe]

The media don't give a shit about you, don't contact them, and don't talk to them. Wired have posted a photo of one of the people.

Don't connect your "hacking" handle with photos, places, names etc. If the media can connect the dots, so can the cops.

Don't talk. Don't boast. Be wary. And they got the last one down, they do accept that they might get caught.

Yeah, these are just some things to think about when breaking the law, and these lessons should be obvious. But I've seen too many people use the same handle all over the 'net, including places where they post names, photos and places. (I use this name in two places, here and RevLeft, you won't find much information about me from either place.)

Oh yeah, and one final thing. Who gives a fuck if Comcast has a lost money? I don't give a shit about corporations.

Re:Some lessons from all this.

[apathy+maybe]

I read the article. I'm just pointing out a couple of the lessons for the next person who does this (or anything like this).

I don't give a shit about corporations, but I do give a shit about people getting caught up in the injustice system just because they fucked around with a corporation.

Re:Some lessons from all this.

[mds820]

You have to give them some credit though. Despite the truth in what you've said, if there was indeed a social engineering aspect to this, it doesn't just take anyone to be able to pull off such a task.

I know I probably couldn't or at least wouldn't want to, simply because of my personality and hatred for talking on the phone.

From a technical perspective though, you're probably right. They're likely just script kiddies who at most can add 2 + 2 together.

Re:Some lessons from all this.

I don't give a shit about corporations. Say that the next time you are ill and need medicine, which will come from an evil corporation.

On the lighter side, your hilarious leftist homepage is hosted by a corporation when there are plenty of non-incorporated hosting companies around, not to mention ones not in the "evil" United States.

As an "anarchist" you should be against socialism much more than democracy. In a democracy you are free to be just about anything you wish, along with greater freedoms of expression, ones that allow you to spew the poo poo you do so well.

Also, socialism is just simply a giant, all-encompassing corporation that manages your needs in exchange for you simply existing under it's reign. Capitalism is much more anarchy-oriented, as you can starve or go homeless if you aren't able to participate or make friends that'll take care of you when the cards are down.

So go on hating corporations. Blind to the food they bring to the masses, medicine they provide, inexpensive modern computers, cell phones, cars, water they pump, electricity they sell, lumber and stone they deliver so you can preach your beliefs from your mother's basement, etc.

Re:Some lessons from all this.

Ignorance is sad, and you are pathetic.

There are many definitions of socialism, we are hardly living in a democracy (rule by the people right? no where do people have control over their own lives, governments, and bosses control people) and corporations are not the only way to get people to innovate.

Re:Some lessons from all this.

[radish]

I don't give a shit about corporations, but I do give a shit about people getting caught up in the injustice system just because they fucked around with a corporation.
What about all the customers who got screwed? No access to email etc, the hassle of sitting on the phone with tech support trying to figure out why nothing works. Comcast didn't lose much but a huge number of people were quite seriously inconvenienced, all for no good reason.

Re:Some lessons from all this.

[apathy+maybe]

They can use the injustice system and sue the bastards perhaps?

Or maybe they can accept that email is not an instant communication tool, that sometimes it does take hours for an email to go around the world (if it ever gets there).

It happened in the middle of the night right? How many people were affected?

Not only that, if I have to mourn the customers every time a corporation got hurt, I wouldn't go out smashing windows, or whatever. The "what about the customers" argument is as flawed as the "what about the workers" argument that is used against people who damage property.

Re:Some lessons from all this.

[Bryansix]

Best advice? Don't use your own computer to do the hacking from.

Re:Some lessons from all this.

Wow, your writing style is a lot like someone named Apathy.... Maybe!

Re:Some lessons from all this.

[johnny+cashed]

Best advice? Don't use your own computer to do the hacking from.

But they won't let me take a bong into the library.

Re:Some lessons from all this.

Well hey dickhead I didn't get a bunch of e-mails yesterday on my Comcast account so now I know why.

I guess I shouldn't use Comcast, maybe I should use Yahoo mail, or Hotmail or Google mail. Hey wait those are corporations too, I guess I can still get caught up in some assholes protest. Maybe I should switch providers, get DSL from AT&T or FiOS from Verizon. Hmmm, they are all corporations as well, I guess I am still vulnerable to the same self-important fucktards you care so much about. Maybe I should get my own T1 line? oh, wait I still think I'd be connecting to the net via some "corporate entity".

Fuck you, fuck you, fuck you

Thats just sad....

[antifoidulus]

not commenting on the hack, but the fact that a human being actually set up a tricorder in his(or his parents) bathroom to take a picture of himself using a bong, and then posted it on myspace.....

Re:Thats just sad....

[antifoidulus]

And its even more sad when a person commenting on something being sad doesn't know the difference between "tripod" and "tricorder"

Re:Thats just sad....

He's being Defiant!

Re:Thats just sad....

[Joeyspecial]

And its even more sad when a person commenting on something being sad doesn't know the difference between "tripod" and "tricorder" If by 'sad' you mean 'fascinating', then I agree.

Re:Thats just sad....

> >He's being Defiant!
>The joke's dead, AC

Dammit, Taco, I'm a Slashdotter, not a jokewriter!

Re:Thats just sad....

[Dark_Gravity]

And its even more sad when a person commenting on something being sad doesn't know the difference between "tripod" and "tricorder" Let me try for a No Prize: tripod + camcorder = tricorder

Network Solutions ha ha

[dalpeh]

Did NS make a statement. I just dropped them a while back for several reasons. Price vs service the most important. NS front runs domains also, they need to make some big changes.

Better hack

[youthoftoday]

They shouldn't have just broken it. I would have pointed it toward a server that disrupted 5% of connections at random, rising 1% each day. Would have been more fun to see how long it took them to notice...

Re:Better hack

[NotBornYesterday]

Better yet, they should have redirected it to BitTorrent.com, or piratebay.

Re:Better hack

[oahazmatt]

Better yet, they should have redirected it to BitTorrent.com, or piratebay. No, they actually were smart not to do that.

Say these kids did just that. Now the question is, why did they do that? Were they told to do that? Are they working with or for Piratebay or Bittorrent?

Given the current torrent (...that was an unfortunate rhyme, I apologize) situation, even trying to associate this event with either of the aforementioned sites would have benefited no one except Comcast.

Re:Better hack

[NotBornYesterday]

You're absolutely right. I was being a wiseass. If they actually did that, they would have screwed things up royally. Not only would bittorrent be suspected, but they would probably be slashdotted by the traffic as well.

I'm just glad it was some annoyed stoners instead of Russian mafia identity thieves with look-alike counterfeit Comcast servers. Imagine the frickin' chaos then.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Saw this yesterday

[ohxten]

Comcast.net was acting weird all day yesterday. First the portal page was changed into a search-only page, which required a login to access all portal features. Then some features weren't working properly.

Re:Saw this yesterday

[parcel]

Comcast.net was acting weird all day yesterday. First the portal page was changed into a search-only page, which required a login to access all portal features. Then some features weren't working properly. Nah, that wasn't the hack, that was just comcast being comcast. The hack was a redirect through DNS to a page that read: "KRYOGENIKS Defiant and EBK RoXed COMCAST. sHouTz To VIRUS Warlock elul21 coll1er seven."

Re:Saw this yesterday

[ohxten]

Yes, I know /that/. However they were doing some odd changes afterwards that I've never seen before, be it because of the hack or they just felt it a good time to screw around. :D

Re:Saw this yesterday

[parcel]

Wouldn't be surprised either way... was fortunate enough to dump comcast a few years ago, but ah, the memories... I especially liked this (from the broadbandreports forum on the hack):

Just called Comcast and my phone number didn't register..had account for 7 years with same number and the CSR insisted that I wasn't a customer. After putting me on hold for 10 minutes she said that the "internet just went down" and that until it comes back up I cannot access email. I told her that the internet was fine, just the comcast.net site.

Street Address

[PeanutButterBreath]

From the article:

They changed the contact information for one of them, Comcast.net, to Defiant's e-mail address; for the street address, they used the "Dildo Room" at "69 Dick Tard Lane." These idiots used their own real street address!?

Re:Street Address

[darguskelen]

No, read your own quote.

They used Defiant's Email address and the fake street address

If Comcast had sense...

[Pazy]

If Comcast has any sense they will try to hire the guys rather than drag them through the courts. We need people like this looking for and fixing flaws rather than exploiting them.

Re:If Comcast had sense...

[Osurak]

If Comcast has any sense they will try to hire the guys rather than drag them through the courts. We need people like this looking for and fixing flaws rather than exploiting them. That's the one thing they can't do, because if they did, it would open the proverbial floodgates. Every script kiddie who wanted a job would start in on it, and I'm sure that for a company like Comcast it's just not worth the hassle.

Re:If Comcast had sense...

[Thelasko]

If Comcast has any sense they will try to hire the guys rather than drag them through the courts. We need people like this looking for and fixing flaws rather than exploiting them. I couldn't disagree with you more. From reading the Wired article, it seems that these guys are just a bunch of scrip kiddies who got lucky. If Wired managed to track them down so quickly (through MySpace no less) than anyone can, including the FBI. If these guys were hired by Comcast they would spend their days getting paid to smoke their bongs, and nothing more. Comcast should be extremely embarrassed to be hacked by these two clowns.

Re:If Comcast had sense...

[Lobster+Quadrille]

You hire Kevin Mitnicks and Frank Abignales. You don't hire these morons.

Re:If Comcast had sense...

[ScentCone]

If Comcast has any sense they will try to hire the guys rather than drag them through the courts. We need people like this looking for and fixing flaws rather than exploiting them.

I have discovered that I can throw bricks through windows. But strangely, no glass manufacturers want to hire me to give them advice on the specifics of engineering brick-proof glass.

Re:If Comcast had sense...

[iamstretchypanda]

Maybe the corporations could setup a controlled experiment where if you are already qualified for the job and would like to demonstrate your skills in a controlled environment they could safely take that into account. Just a thought.

Re:If Comcast had sense...

[Osurak]

Good idea, except you have to route all hiring decisions through some HR drone that doesn't know jack crap about anything related to the position. Putting something like that in place would only serve to confuse them.

Re:If Comcast had sense...

Why do guys who were picked on in school for their lifestyle choices grow up to resent others for theirs, especially others in also-maligned social groups? Man, whatever. Some people "smoke their bongs" (total G-Man lingo you've got going there) & others grow out their hair into pony-tails and read sci-fi pulp. Everybody jerks off. Just know it. It's the new koan.

He's so...

EBK slept for an hour Wednesday night; Defiant for 20 minutes. Even as the attack was in progress, the hackers began to feel the weight of their actions. Both say they've been raided by law enforcement before. "I slept in my clothes, because the last time they came, I was in my underwear with my dong hanging out and shit," says Defiant.

...thoughtful?

5 hours of downtime?

[192939495969798999]

Taking it may have been easy, but the shocker is that Network Solutions + Comcast don't have any kind of response time... 5 hours of someone else controlling a whole swath of high-traffic names sounds like a breach of contract to me. Shouldn't Network Solutions have re-aimed those back to the default values within seconds? There's nothing that they're using to keep track of huge changes like that? Weird... that's what i would do if I were running a domain registrar.

Re:5 hours of downtime?

Yeah, well, I think the past decade+ of domain registry bullshit has pretty much proven that there's nobody home earning that $10 you're paying them. The registries have pretty much no security, no operating procedure, and no policy or desire to fix their fuckups (witness sex.com, and however many other lower-profile domains are transferred away from the people who registered them).

After all, why should they bother when comcast can just take it out on the guys who took over the domain?

They deserve some jail time

[davidwr]

If it were up to me, they'd get a few years of deferred-adjudication probation, but as a condition of probation:
1) They would spend at least 30 days in jail
2) They would have at least a year where all their network computer and phone activity other than voice would be monitored. If necessary, this would include monitoring their computer if their computer used SSL to connect to web sites, which it almost certainly would.
3) Every month for at least a year, they would have to read several white-papers on how much computer crime is costing companies and individuals, either directly or in preventative or other indirect costs, and write a summary of what they read. I'd make them write it longhand, with pen and paper. I'd grade it like an English assignment and make them correct it.
4) They would finish their high school diploma and either enroll in college, a job-training program, or something similar.
5) They would have to distance themselves from the underground/illegal-cracking community for the duration of their probation.

The deferred adjudication is so they have a chance to get a fresh start if they keep their nose clean for a few years.

By the way, if they were minors I'd give them a similar sentence only with shorter time frames.

Yeah but hacking the DNS fifty times in one day?

That shows either malice or incredible stupidity. Those two jokers deserve whatever they get.

Just change the business model

[arthurpaliden]

The gas company sells me gas by the cubic meter. The water company sells me water by the cubic meter. So why not have the ISP's sell me throughput (up and down) by the bit. The more I use the more I pay for. (Yes I know there will be other delivery/infastructure charges same as for water and gas)

Re:Just change the business model

I really don't see what this has to do with TFA, but if you're so dead-keen on tiered internet, move to Australia (or South Africa, or New Zealand). I can't possibly imagine why you'd want such a thing, it's a nightmare in this age where every joker (and his mother) is throwing youtube links like they were free, and every site thinks 5 megabytes worth of flash content/ads is just dandy.

Karma

[kalislashdot]

Couldn't have happened to a nicer company. Fuck you Comcast for killing my TechTV. I am glad this happened, good to get some egg on their face.

Re:Karma

[shentino]

TechTV was bought and assimilated by G4.

Comcast would need to be working with G4 to screw over TechTV.

What about Network Solutions liability

[penguin_dance]

Technically they didn't break into Comcast, they broke into Network Solutions. They're the weak link. I like to bash Comcast as much as the next, but it was a breakdown in security at Network Solutions that allowed them to get into Comcast's registar and repoint their URLs.

Get Out of Jail Free?

[kiehlster]

There is only one option that could keep these guys from jail time. They are likely the only people who know about their so-called hack method. If they don't publish it, they can enter a plea bargain to turn over their method (likely in addition to some money) in an attempt to stay out of jail.

They're definitely going to face some kind of consequences since they didn't do a very good job of concealing their identity, which I'm surprised about considering they call themselves hackers and attempt to conceal their location.

Re:Get Out of Jail Free?

[DragonTHC]

what laws did they break?

They lied about who they were. network solutions gave them access.

as far as I can see, all they did was lie. is that against the law?

network solutions should be held accountable.

Re:Get Out of Jail Free?

[UnderCoverPenguin]

as far as I can see, all they did was lie. is that against the law?

In this case, yes. They committed fraud to gain access. Thus, the access was unauthorized. So, therefore, all the actions they took once access was gained. These alone should be worth several years in jail. Then, as I suggested in an earlier post, add in 14,000,000 counts of service disruption. Any competent prosecutor should easily get those kids a minimum of 5 years actual jail time.

Not in it for money

...they were in it for love?

you keep using that word, I do not think...

It was a terrorist attack intended to disrupt a major part of the infrastructure, period. In a Spanish accent: You keep using that word. I do not think it means what you think it means.

Re:The consequencest might not be as fun

[Slashdot+Suxxors]

Did you read TFA? There is no l33t speak at all. They sounded like two typical teenagers. Quit spreading lies.

Ubuwalker's 6 pronged guide to terrorism

[ubuwalker31]

Actually, what you describe (violent act intending to cause intimidation) is not necessarily terrorism. It could be the legitimate use of force, the result of an armed robbery, or a simple assault.

This is why I developed:

Ubuwalker's 6 pronged guide to determining if a person or entity is a terrorist:

1) Did they intend to cause mass terror? [This is an objective test; just because something is scary, doesn't make it terrorism.]

2) Did they use violence or threat of violence? [This rules out non-violent protesters, but includes activities related to violence, like arson]

3) Did they deliberately (and routinely) target non-combatant civilians? [Actions that target military personnel aren't terrorism. An entity which is involved in isolated and infrequent acts which meet criteria 1-6 are more characteristic of war crimes, rather than terrorism, as they might be revenge attacks or guerrilla attacks of opportunity, or of splinter cells, or accidental engagements of civilian target, or engagements of legitimate military targets where civilian combatant are killed, and thus would not be indicative of a systematic policy of engaging in terrorism]

4) Are they a non-governmental organization? [otherwise the action is a war-crime or crime against humanity or piracy or the actor is a State Sponsor of Terrorism]

5) Did they have a political goal? [This rules out ordinary criminals and vandals and street thugs and normal military action]

6) Do they disguise themselves or pretend that they are ordinary civilians? [This goes to the fundamentally unlawful nature of terrorism, by not acting under the color of the laws of war or international law, and thereby putting civilians at risk of attack or collateral damage]

If you don't meet all of these criteria, or find yourself arguing that a group doesn't meet a prong, then you might be dealing with something other than terrorism. Like Piracy (missing prong 5), ordinary military action (lacking 3 and 4 and 6), covert government operations (lacking 4), war crimes (lacking 4), paramilitary/freedom fighters/insurgents (lacking 1, 3).

A State Sponsor of Terrorism provides support to non-governmental entities engaged in terrorist activities. It is fair to say that a leader who supports terrorism is himself a terrorist, sort of like how its fair to say an accessory to murder is a murderer. However, deliberately targeting civilians/ethnic cleansing/genocide is a war crime, and calling war criminals terrorists just confuses the issue.

Hackers and script kiddies are just ordinary criminals. If Al Queda launched a cyber attack to knock out a hospitals computer infrastructure, that would be terrorism.

Re:Ubuwalker's 6 pronged guide to terrorism

[Amouth]

I like and agree with your list.. you put some time into it.. but i have a question about your last sentence

"If Al Queda launched a cyber attack to knock out a hospitals computer infrastructure, that would be terrorism."

now change the Al Queda to MediaSentry - the people who DOS'ed R3 this past weekend.. inwich the R3 people said "luckly it was us and not a hospital"

what if it that company did target a hospital.. would that be considered terrorism..

(just asking for your personal view)

Re:Ubuwalker's 6 pronged guide to terrorism

[ScottKin]

Ok - let's apply that to what is knonw about the event and see if we can match-up with your guide:

1) No, but they did cause disruption not just on Web Sites but Comcast's network as a whole: httpd, pop3, smtp, nntp, ftp, and any other protocol that you can think of that uses fqdn input to access data.
Result: toss-up

2) It can be argued that hacking into NetworkSolution's DNS services and changing / redirecting Comcast's IP traffic is tanamount to a violent act against a corporation or business. Other "hackers" have done much less and have been hit with serious jail time.
Result: barely

3) Since this event was not connected in any way, shape or form with on-going Military operations, there were no civilians in any region where Military operations are active that were affected or harmed; however, users of Comcast's services were denied access to services or products they purchased, which could fall under violation of "Restriction of Free Trade" laws.
Result: kinda

4) Since they are a "hacking crew", they could be tagged as an "Organization", but not a registered NGO; however, if this was not the first attack from them, or each redirection of the comcast.net domain names can be argued in court to be an individual incident they could be prosecuted under RICO statutes
Result: Murky, but interesting

5) Based on the Wired interview, they could meet this part of the guide if intent to do damage was based on the leftist/liberal distain for all large companies, such as Comcast. Since the statements were made in an interview which was recorder, taped or copied and made available to the general public, then they've pretty much hung themselves on this one.
Result: Nearly there

6) Absolutely. They used social engineering to impersonate someone who had either legal ownership of the domain name, or the person who is registered with Comcast's DNS Registrar to illegally obtaining access to Comcast's DNS settings page to begin their assault.

From what I've read about this (not just the Wired article, but other spots on the net), I can predict a very sad, nasty future for the perps. One quote from the Wired article sums it up:

"The situation has kind of blown up here, a lot bigger than I thought it would," says Defiant, a 19-year-old man whose first name is James. "I wish I was a minor right now because this is going to be really bad."

--ScottKin

Re:Ubuwalker's 6 pronged guide to terrorism

[Myrddin+Wyllt]

Where have you been since 9/11?

Terrorism - to act or think in any way contrary to the policy of the US government (or, by extension, any major US corporation)

Just ask Tony Blair / Gordon Brown

Re:Ubuwalker's 6 pronged guide to terrorism

[mauri]

6), covert government operations (lacking 4), ...
A State Sponsor of Terrorism provides support to non-governmental entities engaged in terrorist activities. It is fair to say that a leader who supports terrorism is himself a terrorist, sort of like how its fair to say an accessory to murder is a murderer. However, deliberately targeting civilians/ethnic cleansing/genocide is a war crime, and calling war criminals terrorists just confuses the issue. If CIA launched a cyber attack to knock out another country's computer infrastructure then it would be terrorism as well.
And like in case of Luis Posada Carriles, who is former CIA terrorist there is very dim line between state sponsors of terrorism (in this case USA) and the actual terrorists themselves.

And a leader who supports terrorists is himself terrorist? Fair with me, then those US presidents who supported terrorist activities on Luis Posada and his ilk are also terrorists :)

p.s. That said, I'm quite happy with Ubuwalker's other 5 prongs.

Comcast's response proves they deserved it

[pseudorand]

> "Nobody was listening in on the ports to try and get usernames and password," says Defiant. "We could have, but we didn't." (On this point, Comcast and the hackers agree).

These guys are either total idiots for getting themselves in a lot of trouble with no gain for themselves or they are lying. Comcast, on the other hand, clearly has no way of knowing if customer information was compromise. They're relying on the word of two criminals who clearly don't like the company. Comcast's agreement in the statement above is irresponsible and negligent. The very least they can do is advise all customers to reset their passwords immediately. If it comes to light that personal information was stolen as a result of this attack, and Comcast customers (or others with whom Comcast customers communicate) can demonstrate financial loss*, I think Comcast should be held partially financially responsible due to their irresponsible response to this event.

* Yes, clearly that would likewise be near impossible to demonstrate, but if these guys /really/ want to screw Comcast, they should change their story later on to help victims of identity theft prove Comcast's culpability.

Remembering a password

[Jason+Levine]

From the article:

Now hands up who can actually remember the userid and password they use for their registrar? (ps feel free to mail them in ). Pretty much every time I need to do something with the registrar I have to request the password or, depending on the registrar, you can fax a request, on letterhead, through to them for action.

Has the author ever heard of any of the dozen password management tools? I use Password Safe to store my passwords. This way I can log into my registrar account without actively remembering the password. If I need to see the password, though, Password Safe lets me edit the entry and see the password. Considering that Password Safe is free (as are many of the other programs), it seems to be a no brainer. If you are having that much trouble remembering your registrar password then install a password management program and save yourself the hassle of requesting the password each time you go to your registrar's website.

Re:Remembering a password

[skis]

Because letterhead over fax is authentication... Actually this guy may have discovered their "part social engineering part technical flaw" by accident.

Not again!

[ZerdZerd]

This has happened before. Anyone remember the story about sex.com.

Didn't even notify customers....

And Comcast didn't even notify customers that it happened. I *unfortunately* am a Comcast subscriber and we received no notice that the hack occurred. Hmmmmm.... makes me feel REAL safe.

100% NSI's Negligence

[Koutarou]

The question is if the weakness in security lies with Comcast (i.e. a weak password for the panel) or Network Solutions (i.e. weakness in their portal, weak transmission of passwords, etc). Total negligence.

Their parent company specializes in PKI and they don't eat their own dogfood and deploy client certificates to their own customers?

That'll teach 'em

[code4fun]

to police my traffic!

Re:Way past the time for that

We are way past the time where we reward people for circumventing security measures and causing massive amounts of disruption to people and businesses. I am almost speechless that you think hiring them at this point is "common sense" for the sake of patching up a social engineering problem. You are quite frankly out of touch with reality. I think it is time to make a major example large enough to make kids think twice before pushing buttons that result in the mass destruction of people's electronic communications infrastructure. MAybe we need to make an example of you for wanting to "harbor" them.

Re:Way past the time for that

[Pazy]

Dont want to harbour, Id just rather have people with the ability to do this on our side rather than hacking maliciously. I do think they should be punished but putting them to use afterwords dosent seem like a reward they still have suffered in Jail (or at least most likely jail).

1 advice ...

[freaker_TuC]

paranoia.com