Subscribe to RSS Feed

05|30|2008 02:57 pm EDT Domain Hijacked at Network Solutions

by Adam Strong in Categories: Featured

Yesterday evening, a pair of hackers took control of Comast Corporation’s domain names. They were able to hack into the administration area within the registrar NetworkSolutions. Access to NSI allowed the hackers privilege to change the DNS records on Comcast’s main domain as well as over 200 other domain names. (Keep reading for more details)
The domain traffic was redirected to the hackers site displaying a proclamation that they “. . .RoXed COMCAST”. The page was displayed for up to 5 hours. The hackers also were able to change the administrative information on Comcast provides internet and email services to roughly 14 million subscribers.

Wired and The Register have both covered the story.

“the attack shows that old-fashioned account compromises are also sufficient to alter substantial amounts of web traffic.”

The Wired article points out that the hackers claim they were able to gain access to the Comcast domain account at NSI by a “combination of social engineering and a technical hack”, but NSI rep Susan Wade denies their claims. “We now know that it was nothing on our end. There was no breach in our system or social engineering situation on our end.” The hackers also claim that the vulnerability still exists with many other sites. Fortunately, for Comcast users, the hackers say that they did not grab any user information. It’s amazing that this sort of thing can still happen and is a wake up call for registrars, corporations and all domain name owners.

Tags: , , , ,

Leave a Reply