Home » Comcast/Xfinity »Consumer News »Public Policy & Gov't » Currently Reading:

Comcast E-Mail Servers Hacked by Notorious NullCrew FTS; Exploit, Passwords Shared Online

Phillip Dampier February 6, 2014 Comcast/Xfinity, Consumer News, Public Policy & Gov't 1 Comment

comcat-hack-one-exploit-575x498At least 34 of Comcast’s email servers have been compromised by a well-known hacker group that posted evidence, the exploit, and certain administrative passwords online to embarrass the company and expose its poor security practices.

Using a “Local File Inclusion” vulnerability, the hacker crew accessed the Zimbra LDAP and MySQL passwords and publicly shared their findings earlier today. Use of this type of exploit can potentially allow hackers to execute code remotely on the web server, allow insertion of malware through JavaScript, open the door to a Denial of Service attack which would slow Comcast’s servers to a crawl, and could also allow hackers access to sensitive customer information.

The security breach affecting Comcast’s email servers remains open and available as of early this afternoon, and Comcast has yet to publicly respond to the security threat.

In one tweet, NullCrew thanked Comcast for putting all of their password information in one convenient spot, making the security intrusion easier.

NullCrew considers itself a hacktivist group that exposes poor security practices at corporations, government agencies, and schools. As exploits are publicized, most affected companies immediately take steps to strengthen security.

NullCrew alerted Comcast four hours before publicizing the breach, but Comcast’s social media team appeared to lack an understanding of the nature of the threat.

NullCrew posted complete documentation about executing the hack on pastebin.com (since removed), opening the door to more attacks by other parties. It also included its latest manifesto:

  1. Hello there beautiful people of the internet, once again; we here at NullCrew have some fun information for you.

  2. This time, our target is Comcast, yet another internet service provider who proclaims to be a secured one; shall we test these claims as well?

  3. What is Comcast?

  4. Comcast Corporation is the largest mass media and communications company in the world by revenue.

  5. It is the largest cable company and home Internet service provider in the United States, and the nation’s third largest home telephone service provider.

  6. Comcast provides cable television, broadband Internet, telephone service and in some areas home security (including burglar alarms, surveillance cameras, fire alarm systems and home automation) to both residential and commercial customers in 40 states and the District of Columbia.

  7. Okay!

  8. So, it’s the LARGEST mass media and communications company in the world? Sweeeeet.

  9. Let’s take a look at it, and see if we should be impressed.

  10. Below us, we have a list of Comcast mail servers; and each of these mail servers run on something called, “Zimbra.”

  11. But each of these mail servers also are vulnerable to LFi, and you know what LFi can lead to, right?

comcast-hack-620x493

Currently there is 1 comment on this Article:

  1. N2KMaster says:

    Sounds like another pissed off ex employee of Aliants. Last time something like this happened a pissed off former employee got their cheat sheets to scam money.







Search This Site:

Contributions:

Recent Comments:

  • Atreidae: That's if you live in a "class 1" area. I'm still well withn "metro melbourne" yet my exchange only has Telstra ports and their considered regional. S...
  • LoomsinJune: " I told her that I will just go ahead and cancel my service and sign up with Time Warner and she seemed more than happy to do that than offer to drop...
  • Dave Hancock: I've had the Verizon Quantum 6 tuner/1TB version for about a month (the 12 tuner/2TB version uses two servers) and am pretty happy with it. I no long...
  • Ernesto Honez: Was that a confirmed and signed "contract"? Was it verbal? Was it sent out in a letter as bulk mailing, or with a first class stamp? Was it's delivery...
  • Matt: I just got off the phone with AT&T. I called saying that I found a promotion through Time Warner for $34.99 for 15 mbps and I am trying to cut dow...
  • Phillip Dampier: It first went to a handful of test markets in upstate New York (not Rochester) and then has been redesignated as a feature enhancement in Maxx markets...
  • Steve Rea: Any idea when the new DVR is coming to Rochester? I remember a story you posed over 2 years ago from the CEO of TWC at the time! saying it was comi...
  • AustinTX: James, my suggestion would be to switch to TWC rental modems, and fry 2-3 of them over the course of several weeks by running 24v AC into the coax con...
  • Dragos: For 1Gbps in Romania we pay around 12 EUR (VAT included - 24%). http://www.rcs-rds.ro/internet-digi-net/fiberlink?t=internet-fix&pachet=digi_ne...
  • James R Curry: Hey, Phillip - While not related to Comcast directly -- I rent my modem from TWC, and while I'd rather buy one outright, there's one big factor ...
  • Sean: I believe that there are issues intermixing DOSCIS 2/3 modems on a node. It's been about 5 years since I've worked with a CMTS so I am by no means an...
  • AustinTX: Yep, this isn't about "your old modem isn't capable of the wonderful new speeds we're providing to your service tier", it's about "we know your custom...

Your Account: