modem uncapping Archives

14 08, 2012

DOCSIS Security | Uncapping Cable Modems

Mia Colabrese2012-08-14T10:57:21-04:00August 14th, 2012|

So what is uncapping cable modems? Uncapping cable modems refers to activities performed to alter a DOCSIS cable modems settings. Plain and simple someone is messing with the cable modem's configuration file to get what they want. So what do they want? Greater bandwidth (the need for speed), wanting more than one public IP, or any other configurable options a DOCSIS modem can offer. Maybe they just want to prove they can do it and or feel they are getting the shaft from their cable provider. Really the psychology of people is

6 08, 2012

DOCSIS Network Security | Theft of Service

Mia Colabrese2021-11-24T09:10:08-05:00August 6th, 2012|

DOCSIS Network Security - It Matters! My next few posts will focus on the security issues associated with DOCSIS networks including, but not limited to theft of service, uncapping modems, illegal wire-tapping by unauthorized citizens, viewing of operating internal network infrastructure and more. These security issues are an increasing threat as the number of DOCSIS subscribers increase, economic drivers cause subscribers to reduce costs, and un-ethical web sites provide easy step-by-step solutions for how to hack your network. While the posts will provide a reality check for everyone

27 02, 2012

DOCSIS 3.0 Cable Modem Registration

Mia Colabrese2021-08-17T16:15:14-04:00February 27th, 2012|

This article will discuss the channel bonding process and ultimately the DOCSIS 3.0 cable modem registration process. In order to be able to understand this article, I will make many references to my prior article on Cable Modem Registration which focused on DOCSIS 1.x and 2.0 cable modems.

23 11, 2011

Fresh Tech | Intraway Secures DOCSIS

Mia Colabrese2020-07-02T16:34:58-04:00November 23rd, 2011|

I first heard of Intraway's products through a LinkedIn request to talk about DOCSIS security from Intraway's CEO, Leandro Rzezak. This immediately peaked my interest becuase today our DOCSIS networks are inherently insecure and many are unaware of this. What do I mean by insecure? No, not crying and sniffling in a corner. They are open to theft of service, illegal intercept of the data transmitted, illegal wiretapping of phone calls, etc. Even with Baseline Privacy Interface Specification (BPI+) DOCSIS is quite hackable as evidenced on a number of well known hacking sites. The cool factor in the Fraud & Network Usage Control module offered by Intraway is that they have developed effective algorithms which sit on-top of the most used provisioning systems, Cisco's CNR and Incognito's BCC.

1 08, 2010

Hacking DOCSIS Cable Modems

Mia Colabrese2021-08-17T13:18:52-04:00August 1st, 2010|

Fundamental Precautions You Should Take to Secure Your Network DOCSIS security wholes are a serious problem, even if you are a major MSO (Multiple System Operator). Recently a reader contacted me and said that theft of service, especially uncapping cable modems via hacking, was still impacting his network. Not surprisingly, one vendor's CMTS was able to ward off the hacker's while another vendor's CMTS was unable to prevent the uncapping and subsequent theft of service. I will protect the vendor's identities because I believe that the CMTS is the first line of defense. Vendors have put into place very effective, CMTS specific techniques, such as Cisco's TFTP-Enforce which prohibits a cable modem from registering and coming on line if there is no matching TFTP traffic through the CMTS preceding the registration attempt. But often individual techniques are "hacked" (such as in the TFTP-Enforce bypass method found on hacker sites). What this indicates is that any reliance on a single point or method of hack-proofing your network WILL NOT WORK. You must implement a layered approach consisting of a number of CMTS, DHCP, TFTP and potentially SNMP and Kerbos related methods. The later would apply for MTAs and set top boxes. For now we will just focus on cable modems and the realm of CMTSs and DHCP/TFTP servers. Here are is the bare minimum of what you should be doing: