Hacked or hijacked
I am currently with Distributel. This last Friday my internet went down. My router was reporting weird IP address so I decided to unplug my router and disconnect all computers leaving only the modem connected to the one computer. I noticed then a weird IP address being picked up by my modem from Distributel. I sensed that the IP does not indicate it is from Distributel. Anyways after 1 and 2 level support Distributel decided that its better for a Cogeco technician to visit my house and test both the modem and the line. I told them about the IP that my modem is picking up and they confirmed it is not from them but they never told me anything else about it. The technician came in yesterday and noticed nothing wrong with the line and the modem. The tech never investigated the IP. I was not home, only my wife. I called Distributel same day yesterday for a solution. One of their 1 level technicians told me this IP belongs to LockHeed Corporation and if I work for this company or not. I laughed and told him no this is a home internet and it is not a corporate internet. I then became suspicious and alarmed and decided to call my friend and investigate about this. It turns our LockHeed Corporation is a US space defense security corporation and are no 1 supplier of military and space equipments for Washington. I was so shocked and couldn't believe what I was told. I called and complained to Distributel and they passed me to 2 level support to investigate. The technician was baffled and so as his supervisor and couldn't believe it as well. He told me this is out of their scope as this is originating from Cogeco and that they will investigate this with them within 24 hours. The IP that I keep getting on my modem is out of their IP range that they purchased from Cogeco. I understand that but why wouldn't any of these two companies with their immense infrastructure have the ability to detect such error and block the IP or terminate such a thing from occurring. How did Cogeco mistakenly allow my modem to pick up an IP that belongs to LockHeed Corporation? My modem is pretty much hijacked. I can not believe this is happening. I read that LockHeed is under cyber attacks by foreign groups. Has anyone had this happening to them where a modem gets hacked or hijacked? I cant find anything about this here in Canada.
Someone at Cogeco fat fingered an IP scope on their DHCP server?
Most likely explanation. No matter - even if they did, it wouldn't route - which you already know.
MNSi Internet - »www.mnsi.net
|reply to windsor |
What is this suspicious IP?
Fort Erie, ON
|reply to windsor |
Go into your router settings and change the WAN mac address to something else. I'd be willing to bet at that point you'll get a good IP and all will be well. HeadSpinning's explanation is indeed the most plausible.