
So
So , when will the Comcast executives emails become public domain on the intertubes ?
Unknown hackers hijacked Comcast's domain name for three hours overnight, sending subscribers who tried to access webmail and other services to a rogue site that bragged of the exploit. Comcast lost control of the comcast.net address after the attackers changed registration information stored by its domain registrar, Network …
i am sure this was done by a social engineering attack, someone got names and info on admins inside comcast, and then called up network solutions or faxed them a change. Quite likely if they could make the request seem authentic i bet. After all, how many people who post to this site would fall for a trick like that? This also means it is likely to be partly an inside job too :)
Preventing this kind of things happening can never be 100% but aren't they monitoring it? You would think that any company which is relying on, let's say DNS, would be monitoring that resource? Doesn't really cost anything, just a couple of messages time to time. Weird!
Here we have a nice division of labour. I look after our DNS, but my boss has our registry account. Most of the time, he keeps the company credit card details off our account, and whenever I have to do something with the registry account, I have to ask him to fill in the details.
Until he does, I can't do anything with the registry account at all, all I get is a page telling me that there are no credit card details available.
A rough - but efficient - protection method.
When I've finished - I let him know he can remove the card details again and the protection is back on.
Regards
Neil
>> A brute force password attack is one possibility, but you'd think Network Solutions >> has safeguards in place to detect thousands of unsuccessful login attempts.
You would think that all domain registrars would have passwords encrypted ? oh look UKreg/Fasthosts didn't, so NS not having brute force detection wouldn't surprise me
I've had comcast for ages mainly because they've forgotten us on their rate increases so we hum along at some old cheap rate. The second they try to raise my rate we'll be running for the door.
But Comcrap doesn't really need a whole lot of help screwing up their network - they do it all by themselves, ALL THE TIME. At any point in time half of the intarweb can't be located. There was some sort of outage in the area last weekend that left something like 140,000 households without service for a few hours. Bittorrents downloads do finish but forget about seeding due to their session rejects.
Posting anonymously as I don't want those clowns to find me and "fix" my billing.