Slashdot Mirror
Comcast Briefly Loses Control of Its Domain Name
Fallen Andy notes that Comcast, one of the largest US ISPs, lost control of its domain name to what appeared to be juvenile social engineers of the old school — i.e. not in it for the money. The intruders got into Comcast's registrar account at Network Solutions and repointed the domain's DNS records. A blog entry at SANS points out how trivially easy this can be. Reader ElvenKnight points out an insightful interview up at Wired with the two young guys who perpetrated the hack.
Missed one.
12345.
"I think an etch-a-sketch with an ethernet port would beat IE7 in web standards compliance."
From the Wired article:
Network Solutions spokeswoman Susan Wade disputes the hackers' account. "We now know that it was nothing on our end," she says. "There was no breach in our system or social engineering situation on our end."Sooo, what she's saying is that Network Solutions' system was operating as designed. Is that supposed to be comforting?
Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
Try this: http://www.gethuman.com/gethuman_list.asp?bname=%22C%22
Lazy companies create "automated systems to handle most inquiries" ignoring the fact that even their claim states its own failing, it doesn't handle them all. So we have created a database of how to circumvent the barrier to customer support.
Now if only we could force them to hire customer support grunts without such thick accents.
Question everything
Read (some of) the 25+ page discussion on Broadband Reports, linked in the article. Ports 25 and 110 were active and accepting connections, followed by rejecting all logins are (presumably) harvesting their credentials. My Nmap scans during the event are included in that thread.
Interested in open source engine management for your Subaru?
Terrorism, by definition, has to have some sort of political goal in mind (wanting power, autonomy, etc), and has to have the intention of intimidation. This has neither.
I don't see anyone shaking in fear over Comcast's website being inaccessible...
It's just a regular crime, not terrorism.
Life isn't fair, but the judicial system is supposed to be.
"The cup is in turn designed for holding hot or cold liquids, and has an open rim and closed base." --US Patent #5425497
You know if you use a real domain registrar and not Network Solutions you can put a freeze on changes to your records so this can't happen.
The Wired article/interview says that they were bouncing around web hosts like crazy. Of course if the point comcast.net to some large host, you'll see all kinds of services during your nmap scan.
They were using bunches of free webhosts who almost definitely have servers listening on imap/pop3/smtp and other services. That said, it makes sense that logins intended for comcast ended up failing when they hit these random web hosts.
I agree. The parent should seriously take a minute to check out wikipedia's article on -ism and find out what the word terror means when ism is suffixed.
That being said, your spice/caffeine sig is AWESOME.