TKJunkMail
Enjoy the sun
Premium
join:2002-03-03
Avalon, NJ
 ·Sprint Mobile Broa..
 ·Comcast
1 edit |  Also a thread in the Comcast HSI forum
Comcast support has posted info in the Comcast HSI forum on this subject:
»Passwords of 8,000 Comcast Customers Exposed
Comcast customer support in the above msg thread claims that after duplicates in the list and inactive accounts were identified, there were only about 700 actual active accounts exposed. |
|
keyboard5684
join:2001-08-01
Youngsville, PA
 ·Teliax VOIP
·WestPAnet Inc.
·WestPAnet Inc. CA..
| For a minute, I was surprised to see how many people used password as their... password?
Most ISPs usually require a number or something in there, but to allow for password to be the password is a little weird. Granted, it is all on the users side, for the ISP, spam and other problems are more the ISPs problem. |
|
Smith6612
Premium
join:2008-02-01
united state
 ·Dish Network
 ·Verizon Online DSL
·FrontierNet Intern..
| Freezing accounts...
Well, it isn't much of a shock to hear of this considering I've ran into people from time to time that use admin or password for their passwords. At least Comcast is teaching their users about having good passwords, so they are taking a positive step in my direction for this. |
|
Stumbles
join:2002-12-17
Port Saint Lucie, FL
| The smell of "eh"?
Ermm, sounds like to me Comcast needs to "educate" their own syadmins/security experts about their own use of safe passwords. Now, maybe, just maybe those 8000 names *were* gathered from phishing attempts, but that is an awful lot of names from just *one* ISP. So the question is; is Comcast lying, or has other ISPs had similar phishing attempts with their customers. And if so, why is there no news about that? |
|
Eat Me
join:2002-09-25
Sussex, NJ | Caps
I'm sure someone will find a way to relate this to Comcast's caps.  |
|
keyboard5684
join:2001-08-01
Youngsville, PA | Yes, it is this type of account exposure that causes the ISPs to implement caps.
DOWN WITH CAPS. Free Tibet. Legalize pot.
Sorry... |
|
en102
Canadian, eh?
join:2001-01-26
Valencia, CA | reply to Stumbles
Re: The smell of "eh"?
I disagree on the 'number' at being from Comcast.
8,000 out of 15 million. That also may be 15 million 'subs' which may generate +30 million email adresses.
8,000/15,000,000 = 0.05%. |
|
Eat Me
join:2002-09-25
Sussex, NJ
·PenTeleData
·Future Nine Corpor..
·VOIPo
·Vonage
| reply to keyboard5684
Re: Caps
said by keyboard5684  :Yes, it is this type of account exposure that causes the ISPs to implement caps. DOWN WITH CAPS. Free Tibet. Legalize pot. Sorry... LOL that is good signature material... |
|
jlivingood
Premium,VIP
join:2007-10-28
Philadelphia, PA
| reply to en102
Re: The smell of "eh"?
One of our PR folks (Charlie Douglas) just posted this on another site. Thought it may be interesting in relation to the question at hand:
Based on an initial analysis of the document, we have identified that only about 700 of these accounts are real. The list was likely generated as the result of a phishing scam or some kind of malware that affected customer computers. We have no reason to believe that any Comcast systems have been compromised. The site has removed the document and we are in the process of freezing access to any customer’s account on that list. We are also in the process of proactively contacting customers to let them know about this situation and the steps they can take to help protect themselves. It's precisely because of this kind of thing that we have been providing free security software and tools for years to help customers protect themselves from phishing scams and malware. The authorities have been alerted and we'll help with any investigation.
--
JL
Comcast |
|
quatrix
Premium
join:2005-02-11
Davie, FL | Out of how many millions of customers?
This is nothing. |
|
k1ll3rdr4g0n
join:2005-03-19
Homer Glen, IL
| reply to Eat Me
Re: Caps
said by Eat Me :said by keyboard5684 :Yes, it is this type of account exposure that causes the ISPs to implement caps. DOWN WITH CAPS. Free Tibet. Legalize pot. Sorry... LOL that is good signature material... I second that. Hey Karl - make that the offical slogan of DSLReports  . |
|
madman
join:2009-02-02
Portland, OR | s
maybe i can finally figure out my password |
|
WareWolF2k
join:2000-11-14
Allentown, PA | reply to keyboard5684
Re: Also a thread in the Comcast HSI forum
RCN used to use "password" as a default password at one time. You are supposed to go on their web site and change it to something unique but some people never do. |
|
dvd536
as Mr. Pink as they come
Premium
join:2001-04-27
Phoenix, AZ
| said by WareWolF2k :RCN used to use "password" as a default password at one time. You are supposed to go on their web site and change it to something unique but some people never do. cox does the same thing.
-
if comcast still gives 2gb/mo on giganews, i bet lots of those were used to steal giganews service.
--
When I gez aju zavateh na nalechoo more new yonooz tonigh molinigh - Ken Lee |
|
pleekmo
Triptoe Through The Tulips
Premium
join:2001-09-14
Manchester, CT
clubs:
| reply to keyboard5684
Re: Passwords
You just made my day! (Well, night, actually.)
I'd happened to find a Compaq Presario 6410nx in a midden. Wouldn't power up. I finally found out this evening that the thing uses standard ATX pinouts and I shove in a PSU that I happened to have lying about.
Powering up the computer I'm faced with an XP Pro login screen. Null password wouldn't work but your post prompted me to attempt "password". Well, it worked!
--
HCN: Because you deserve a rest!
Proud member of the Free Omelas Liberation Front. |
|
en102
Canadian, eh?
join:2001-01-26
Valencia, CA | reply to quatrix
Re: Out of how many millions of customers?
Yup - like I posted... ~ 0.05% (assuming 8000/15million)
--
Canada = Hollywood North |
|
Loco
Premium
join:2002-11-09
So Cal | reply to TKJunkMail
Re: Also a thread in the Comcast HSI forum
Awesome ! |
|
Desdinova
join:2003-01-26
Gaithersburg, MD | reply to madman
Re: s
Just google yer username and it'll probably pop up on a phished list somewhere...  |
|
moby866
Premium
join:2000-10-07
Above you
 ·surpasshosting
·RoadRunner Cable
·Vonage
·CableOne
| Only 8,000?
Why that's COMCASTIC!
Seriously, they are setting new standards in F#*%&%(@ up.
They should merge with AIG, they got skills to save teh day!
--
If we do not succeed, then we run the risk of failure - J. Danforth Quayle
Ich habe kein Mitleid - Me |
|
ebubman
join:2002-01-17
Enola, PA | ummm, if our goods were out there, is comcast going to let us know or do we have to wait until something happens to find out? |
|
