Update: 08th February 2010: Time IST 11.30 AM
TCS.com restored, and it is live now. TCS Engineers proved their skills.
Today Evening exactly at IST 10.55 PM, I visited tcs.com and got shocked by seeing those “For Sale” letters. The hacker put his email for the domain sale deals. Also he used French words in that page. It’s just a translation of those English words.
Know about TCS:
TCS offers Software services and Consultancy services. It has headquarters in Mumbai. And they are having branch offices in 41 countries. For more information please just refer their verified WikiPedia page.
TCS.COM – Hosting & Domain Information – 07th February 2010
(Note this is my analysis only. I’ve listed some of the main information about tcs.com’s hosting and domain registration details.)
Domain Name Details:
- Tcs.com registered on 25-nov-1997.
- Expires on 24-nov-2011.
- And note the point: Updated on 07-feb-2010 (Today). It maybe confirms the hacker hacked domain registration control panel. ( See the whois details here)
TCS.com Hosting Server Name: Tracom Networks
TCS.com hosted in Tracom Networks. And the IP address is 22.214.171.124. I googled about Tracom Networks and got their website http://tracom.net/. It shows “Under Construction” text. And its server registered as with the name of “Tracomm Infotech Pvt”.
The TCS.com server pointing to 4 name servers. That is NS1.TRACOM.NET, NS2.TRACOM.NET, NS3.TCS.COM, NS4.TCS.COM, NS5.TCS.COM.
And they are using ISS 5.0 server with ISO/IEC 8859 encoding. They designed the site in ASP.net framework.
Note the point:
Here this hacker hacked Microsoft technology not the Linux server. Till yesterday I believed no one can hack Microsoft powered IIS server and the ASP.net applications. Toady I lost all those hopes. May be this guy have lot of practices in hacking.
I think this guy played in the Web.config files. Actually, .net guys used to say, no one can change the Web.config files. Here it is proved…
Check now: All of the following popular pages showing Runtime Error.
TCS.com’s Career portal (http://careers.tcs.com) still alive and it is safe in Java Servers. This is the sub domain of tcs.com and it is hosted in their own server networks called TATA Communications formerly VSNL.
How to find the Bad Hacker:
- If TCS installed any analytics software in their server means, we can easily track the hacker’s IP Address matching to hacker’s Hotmail id logs. But he can easily escape by hiding his IP address.
- Next, TCS HR team must hire the Ethical Hackers to find the Bad Hacker. They can try by hiring World’s no.1 Ethical hacker Ankit Fadia. His Twitter ID: http://twitter.com/ankit_fadia
I think no data lost in this hacking. Because, TCS is India’s largest IT Company and 95% sure, they are having backuping system in their serves.
I hope TCS people can win in this hacking game. Wait and see…