-
Join the MyBroadband community
South Africa’s biggest forum. Discuss, discover, and connect with thousands of members.
-
Question of the Day: Have you ever been to an airshow?
Hacked Adsl
- Thread starter Rainy
- Start date
guest2013-1
guest
- Joined
- Aug 22, 2003
- Messages
- 19,800
- Reaction score
- 13
Attorneys helps nothing, you need to open up a criminal case with the police. Then the detective investigates etc.
This isn't "sueable" but a criminal act.
This isn't "sueable" but a criminal act.
moegoe
Well-Known Member
I've been through this process! just like KALSTER said, they steal your credentials and use your cap... actually THRASH your cap... loosers.
Anyway, the process I followed was to inform my ISP about it all and gave them the only 2 possible landlines where my connections will originate from on a regular basis, so they found another connection from somewhere they cannot disclose.
They (the ISP) advised me to open a case with the SAPS with the specifics from the ISP and the SAPS takes it from there. They open a criminal record and deal with it.
I didn't take it as far as the SAPS, but instead just change my password monthly.
I sure hope you do something about this and catch those punks.
Anyway, the process I followed was to inform my ISP about it all and gave them the only 2 possible landlines where my connections will originate from on a regular basis, so they found another connection from somewhere they cannot disclose.
They (the ISP) advised me to open a case with the SAPS with the specifics from the ISP and the SAPS takes it from there. They open a criminal record and deal with it.
I didn't take it as far as the SAPS, but instead just change my password monthly.
I sure hope you do something about this and catch those punks.
guest2013-1
guest
- Joined
- Aug 22, 2003
- Messages
- 19,800
- Reaction score
- 13
First off, a few ways they can get your credentials (which is fairly easy) and here is one they often use:
1) Your router has remote management turned on, so they scan the ADSL IP range for any kind of response.
2) Once they get the response, they check if the default username/password routers comes equipped with works. If it works....
3) They go to the page where you setup your ADSL account, they right click and "View Source". Your password isn't hidden from the View Source bit but only to someone who views it.
So to secure your password, make sure your router can't be remotely managed, or if you need it turned on, change the default password for it. Some routers even allow you to change the administrator username to something unique.
Don't give your password to anyone you trust. Those people usually screw you over by writing it down for everyone to see to "remember it" etc
Choose an ISP who can lock your ADSL account usage based on port number. Web Africa has such a feature. Login to the client interface and go to where you view your bandwidth usage. They call it secure DSL and it stops anyone from using your account except you (from that specific line/port number)
However, I've seen Telkom sometimes change port numbers (or update it if you have a problem, switching it) to something different so be careful with that feature. You can also see who is currently logged into it with your account as well as dates and times etc and which port numbers (which is usually helpful when you are trying to give the police as much possible info for the case)
If you have port number xyz connected on my account at 22 Sep 2009 14:56 then Telkom can trace it much easier, and with a court order/police docket they have to disclose the details of the person's line it is so they can follow up with the investigation.
1) Your router has remote management turned on, so they scan the ADSL IP range for any kind of response.
2) Once they get the response, they check if the default username/password routers comes equipped with works. If it works....
3) They go to the page where you setup your ADSL account, they right click and "View Source". Your password isn't hidden from the View Source bit but only to someone who views it.
So to secure your password, make sure your router can't be remotely managed, or if you need it turned on, change the default password for it. Some routers even allow you to change the administrator username to something unique.
Don't give your password to anyone you trust. Those people usually screw you over by writing it down for everyone to see to "remember it" etc
Choose an ISP who can lock your ADSL account usage based on port number. Web Africa has such a feature. Login to the client interface and go to where you view your bandwidth usage. They call it secure DSL and it stops anyone from using your account except you (from that specific line/port number)
However, I've seen Telkom sometimes change port numbers (or update it if you have a problem, switching it) to something different so be careful with that feature. You can also see who is currently logged into it with your account as well as dates and times etc and which port numbers (which is usually helpful when you are trying to give the police as much possible info for the case)
If you have port number xyz connected on my account at 22 Sep 2009 14:56 then Telkom can trace it much easier, and with a court order/police docket they have to disclose the details of the person's line it is so they can follow up with the investigation.
Sting
Ghost in the Machine
If you have facts and it upsets you so badly, please report it to the Telkom fraud line so that they can do something about it!
The incident I know for a fact involved fraud happened a few years back and I can't remember many of the details, but as it happens some bandwidth disappeared from our business account this past month (2/3 of it) and we are busy investigating that for any irregularities. Both incidents involved Telkom accounts.
Last edited:
Peppercorns
Senior Member
I'm not 100% sure how true this is, but I've heard that because this 'Bandwidth Theft' has become such a widespread problem, the police don't even issue criminal records to the 'hacker'. It has become more like a 'Speeding Ticket' type of crime where you just pay the fine and thats the last you'll hear of it. :erm:
In this case, nothing stops hackers, since a measley fine will mean nothing to the thousands of gigs of bandwidth they could get away with. Especially since a lot of people don't realize they've been hacked, or just don't bother to do anything about it.
In this case, nothing stops hackers, since a measley fine will mean nothing to the thousands of gigs of bandwidth they could get away with. Especially since a lot of people don't realize they've been hacked, or just don't bother to do anything about it.
Sting
Ghost in the Machine
Please report it. I have a buddy that works in their network fraud section and they are very useful.
what if its some teenager, i dont think it should be made into something too serious, a fine would suffice amiright
Peppercorns
Senior Member
I agree to an extent. Yes, there are those teenagers who find this 'uncapped' option for them and just hack, hack and hack some more.
A fine would serve as a good warning in such a case and hopefully give the little guy a good scare.
To fully enforce this however, a 2nd or 3rd reoccurance of the same thing should lead to either a huge fine or some type of court hearing or sentence.
These are just ideas, I have no idea how it's actually dealt with lately, if anyone who does know could inform us, it would be great
Its more trouble than whats its worth, just chane router l/p and account l/p. Trust me my pal went through the whole police thing and at the end of they day the guy just got a fine.
So you lost a few gigs, new month is just around the corner
So you lost a few gigs, new month is just around the corner
It is VERY important to change the default password of your router.
I did a test last week to see if people still use the default password, and I managed to find the ADSL username and password of quite a few people without doing any real 'hacking'.
I would never dream of using this information to steal bandwidth though. Rather fire off an e-mail to the user's isp asking them to inform this user that he has to change the password, lest someone else gain access with malicious intent.
I did a test last week to see if people still use the default password, and I managed to find the ADSL username and password of quite a few people without doing any real 'hacking'.
I would never dream of using this information to steal bandwidth though. Rather fire off an e-mail to the user's isp asking them to inform this user that he has to change the password, lest someone else gain access with malicious intent.
Last edited:
Kuga
Expert Member
I used to use hacked ADSL accounts until I got caught. I was stupid though, kept capping the accounts. Only one person picked up on this. They phoned their ISP, and an email was sent to my parents (registered telephone account holder).
I then had to pay for the bandwidth I had used which came out to R800.
This scared me enough to stopping using other accounts.
It's not hacking per se, it's just using the routers default username/pass.
I then had to pay for the bandwidth I had used which came out to R800.
This scared me enough to stopping using other accounts.
It's not hacking per se, it's just using the routers default username/pass.
but what happens if they can access ur network wirelessly by hacking ur network password? wouldnt that be undetectable? that happened to us at work. left work at 5pm came back next morning and cap was reached. this was like halfway thru the month..
Hamish McPanji
Honorary Master
Telkoms fraud line is just a waste of time. I called them and asked them...
"I have switched off my router yesterday...and am browsing through Vodacom 3g. Yur usage portal is still showing my bandwidth being used, and current connections. Can you identify the number it is being used from"
They refused to assist and just told me to contact SAPS.
I think they should have the responsibility of contacting SAPS and providing what information they have. Am definitely switching from telkom soon
"I have switched off my router yesterday...and am browsing through Vodacom 3g. Yur usage portal is still showing my bandwidth being used, and current connections. Can you identify the number it is being used from"
They refused to assist and just told me to contact SAPS.
I think they should have the responsibility of contacting SAPS and providing what information they have. Am definitely switching from telkom soon