Stories
Slash Boxes
Comments
Search

News for nerds, stuff that matters

Slashdot Log In

Log In

[ Create a new account ]

Comcast Briefly Loses Control of Its Domain Name

Posted by kdawson on Fri May 30, 2008 08:54 AM
from the old-skool-pwned dept.
Security The Internet
Fallen Andy notes that Comcast, one of the largest US ISPs, lost control of its domain name to what appeared to be juvenile social engineers of the old school — i.e. not in it for the money. The intruders got into Comcast's registrar account at Network Solutions and repointed the domain's DNS records. A blog entry at SANS points out how trivially easy this can be. Reader ElvenKnight points out an insightful interview up at Wired with the two young guys who perpetrated the hack.

Related Stories

Firehose:Comcast 0, social engineering attack 1 by Fallen Andy (795676)
This discussion has been archived. No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

Comcast Briefly Loses Control of Its Domain Name 25 Comments More | Login /

 Full
 Abbreviated
 Hidden
More | Login
Loading... please wait.
  • the two kids who perpetrated the hack

    How much do you bet the feds will come down hard on the kids and charge then with felony, cyber-"terrorism" or some other preposterous computer crime? I used to do harmless hacks for fun in years past, but these days it's not really wise.

    • Re:The consequences might not be as fun (Score:5, Insightful)

      by Scutter (18425) on Friday May 30, @09:01AM (#23598297) Journal
      How much do you bet the feds will come down hard on the kids and charge then with felony, cyber-"terrorism" or some other preposterous computer crime? I used to do harmless hacks for fun in years past, but these days it's not really wise.

      That was hardly a "harmless hack". There is a lot of money tied to that domain and when it's down, it's a serious problem for a lot of people. That said, I agree that charging them as cyber-terrorists would be severe overkill.
    • I personally couldn't care less what they charge them with. If you going to do something so high profile you better expect that your punishment is going to be equally if not more so. I hope for them it was worth it.

      • I personally couldn't care less what they charge them with. If you going to do something so high profile you better expect that your punishment is going to be equally if not more so.

        I think they've figured that out... now. From the Wired interview:

        "The situation has kind of blown up here, a lot bigger than I thought it would," says Defiant, a 19-year-old man whose first name is James. "I wish I was a minor right now because this is going to be really bad."

        They claim they called Comcast's technical contact and told him they'd taken control of the domain, BEFORE they changed anything. I don't know if it'll help them in court, but it sounds like if he hadn't blown them off, it really would have been a harmless prank. That doesn't justify their decision to redirect, but the Comcast guy should have at least bothered to check.

        After they were blown off by him, these punks lost their tempers:

        "I was trying to say we shouldn't do this the whole damn time," says Defiant.

        "But once we were in," adds EBK, "it was, like, fuck it."

        Well, I hope they had fun, because they're going to be paying for it, big time.

      • Re:The consequences might not be as fun (Score:5, Interesting)

        by parcel (145162) on Friday May 30, @09:31AM (#23598599)

        harvested logins of customers.
        FTFA:

        Fellow hackers, relying on press reports claiming that customer data may have been compromised, are hitting up the duo for passwords to Comcast e-mail accounts, which they say they don't have. "Nobody was listening in on the ports to try and get usernames and password," says Defiant. "We could have, but we didn't." (On this point, Comcast and the hackers agree).
  • Other websites that I know of have had this happen in the past, and the common trend seems to be that Network Solutions has been their domain registrar. The largest site in recent memory that this occurred to other than Comcast was SomethingAwful.

    Perhaps it's a sign of a more underlying flaw in Network Solutions' security?
  • Wanna know why? Because they called Comcast and could get in touch with a HUMAN!

    Now *THAT'S* hacking.

    • Re:These guys are my heroes (Score:5, Informative)

      by Thaelon (250687) on Friday May 30, @09:41AM (#23598721)
      Try this: http://www.gethuman.com/gethuman_list.asp?bname=%22C%22 [gethuman.com]

      Lazy companies create "automated systems to handle most inquiries" ignoring the fact that even their claim states its own failing, it doesn't handle them all. So we have created a database of how to circumvent the barrier to customer support.

      Now if only we could force them to hire customer support grunts without such thick accents.

    • Re:These guys are my heroes (Score:5, Funny)

      by DriedClexler (814907) on Friday May 30, @09:46AM (#23598799)
      How come no one's made the obvious joke yet?

      Comcast: OMG!!! Outrageous!!! Some HACKERS denied us access to our OWN DOMAIN NAME!!!! Get them!!!!
      FBI: Why? They didn't take anything that belongs to you.
      Comcast: What??? Out contract with ICANN gives us unlimited access to the Comcast domain!
      FBI: Right. And what does unlimited mean?
      Comcast: Look, it's right here in Websters: "without any ..."
      FBI: No, no, not that one, use your own internal glossary.
      Comcast: Okay then, "unlimited: " ... ah, okay, see your point there.

  • I know who did it... (Score:5, Funny)

    by Thelasko (1196535) on Friday May 30, @09:14AM (#23598423) Journal
    It was the Slowskys [youtube.com].

  • Thats just sad.... (Score:5, Funny)

    by antifoidulus (807088) on Friday May 30, @09:27AM (#23598565) Homepage Journal
    not commenting on the hack, but the fact that a human being actually set up a tricorder in his(or his parents) bathroom to take a picture of himself using a bong, and then posted it on myspace.....

    • Re:Expiring domains (Score:5, Interesting)

      by Flamora (877499) on Friday May 30, @09:11AM (#23598403)
      It wasn't even that Comcast's domain expired. The pair involved in this managed to gain access to Comcast's Network Solutions control panel and had full authoritative control over the domains.

      Apparently, according to the linked articles, they pulled it off twice, too. This wasn't a case of "oh sweet, that's not registered anymore, yoink", it was a case of actual wresting of control.

      The question is if the weakness in security lies with Comcast (i.e. a weak password for the panel) or Network Solutions (i.e. weakness in their portal, weak transmission of passwords, etc).

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.