How A Contractor Exploited A Vulnerability In The FCC Website (wirelessestimator.com) 69
RendonWI writes: A Wisconsin wireless contractor discovered a flaw in the FCC's Antenna Structure Registration (ASR) database, and changed the ownership of more than 40 towers from multiple carriers and tower owners into his company's name during the past five months without the rightful owners being notified by the agency, according to FCC documents and sources knowledgeable of the illegal transfers. Sprint, AT&T and key tower companies were targeted in the wide-ranging thefts... Changing ASR ownership is an easy process by applying online for an FCC Registration Number (FRN) which is instantly granted whether the factual or inaccurate information is provided. Then, once logged in, an FRN holder can submit a form stating that they are the new owner of any or multiple structures in the database.
As soon as it is submitted, the change is immediately reflected in the ASR.
Summary? (Score:5, Insightful)
Re: Summary? (Score:1)
The perpetrator gained super karma somewhere on Reddit for having such a cool story bro.
Re: Summary? (Score:3)
Changing the owner that is listed in one federal database doesn't actually transfer ownership of the assets in question.
Re: (Score:2)
Changing the owner that is listed in one federal database doesn't actually transfer ownership of the assets in question.
But they should send a Bill for all FCC fines for any violations found at any of those towers that occured to the registered owner while the contractor was listed as such.
Re: (Score:3)
Changing the owner that is listed in one federal database doesn't actually transfer ownership of the assets in question.
Yes, but those entries may be enough to enable you to bluff your way through some other transaction or fraud scheme, if it looks like you're the owner.
Re: (Score:2)
Yes, but those entries may be enough to enable you to bluff your way through some other transaction or fraud scheme
And this might have slipped under the radar if he targeted one or two towers, instead of 40, b/c as a result of claiming so many he wound up assigning himself some tower that was damaged requiring $21k repairs to make it safe to the public and thus under FCC investigation and making false statements, causing a safety hazard...
I would Hope they put Aura on the hook for the $21K, and block hi
Re: (Score:2)
But that's just it: it didn't actually get him the towers and equipment. He just hacked a database (which was not the legal record of ownership) to say he had it. It didn't get him possession of it, and if he tried to dispute ownership, the hacked records would quickly be shown as fake. So what did he intend to do?
Re: (Score:2)
Those records may give him enough credibility to enable him to bluff his way through some other transaction or fraud, which may be the real target of what he was after.
Re: (Score:2)
It's impossible to even guess why a criminal would want $12 million worth of Towers and antenna equipment.
To sell it on eBay, of course!
Re: (Score:1)
Re: (Score:2)
No, that's "Jesus H. Christ!"
Re: (Score:2)
Re: (Score:3)
whats the H. stand for?
Haploid.
Re: (Score:2)
Re: (Score:2)
Re: (Score:3)
That would actually be Geese's Christ, the winged counterpart to Deer God in the animal pantheon.
Re: (Score:2)
dropping whitewash in my eye,
I don't care, I don't cry,
I'm just glad that cows don't fly.
Re: (Score:3)
Why doesnt the summary indicate in any way what was gained by the perpetrator in doing this?
I would think a warm cell and three meals a day?
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
ugh..... (Score:4, Informative)
Re: (Score:2)
What a jackass... now the FCC is going to burden us honest folk with extra paperwork.
I liked being able to submit my AU to the ULS and it being approved the next day automatically.
I'm that was convenient and all, but what if it was someone mucking about with your records and changing stuff in them?
Why? (Score:5, Interesting)
From the article: "It is unknown why Nix changed the ownership of the structures or what benefits would be derived by being able to identify that Aura owned a $12-plus million group of towers."
This seems like a 'Step 2: ???' kinda plan, since the FCC database gets you exactly nothing in terms of money, or ability to transfer ownership of the towers.
Weird.
Re: (Score:2)
My guess would be to try and sell them
Re: (Score:2)
You know, I'll bet you're right. Selling them would be like selling a bridge you don't own, and the con would work a lot easier if you can show that the FCC has you down as the owner.
Re: (Score:3)
Borrow against them.
After 2008, bankers are desperate to write new loans against practically anything. Since the home mortgage business is being watched like a hawk by regulators, lots of business scams are popping up.
Re: (Score:3)
Bankers are going to require more paperwork to show clear title than a listing in the FCC database,
just because you're listed as owner doesn't mean there's no Lien or other mortgage against the property, for example.
Re: (Score:1)
Obviously he was just trying to get laid. Women get soaking wet over guys who own a lot of cellular infrastructure. There's even a famous rap song about it.
Sprint, Cricket, Let me stick it
in your butt hole like T-Mobile,
slide in your buns like Verizon,
This nigga own so many towers
you gonna be suckin my dick for hours
Re: Why? (Score:2)
Of all the suggested reasons, this is most likely.
Re: (Score:2)
This seems like a 'Step 2: ???' kinda plan, since the FCC database gets you exactly nothing in terms of money, or ability to transfer ownership of the towers.
Just because the reporter who wrote the story didn't have details of the scam, doesn't mean that there were no details. It just means they're not going to be able to tell you.
An obvious thing would be scamming investors by making your company look larger than it is. Who knows? Chances are, catching him at this stage means whatever the rest of the plan was we'll never know because he won't be able to do it now.
To everyone wondering what was gained (Score:3, Insightful)
When I, a small wISP owner, want to access a tower I look up the tower owner in the FCC database. I then contact said owner and proceed to work out a lease agreement. When I, a small wisp owner, want a bank loan I attach my FCC Database records as part of proof of ownership. The structure itself very often does not have records with the county like land does. The land can be owned by J. Q. Public, Et Al. Now I have $12M worth of assets and can get a 3 to 5m loan with a very attractive rate because its so far under my asset value.
Seriously?? (Score:2)
"Changing ASR ownership is an easy process by applying online for an FCC Registration Number (FRN) which is instantly granted whether the factual or inaccurate information is provided. Then, once logged in, an FRN holder can submit a form stating that they are the new owner of any or multiple structures in the database. As soon as it is submitted, the change is immediately reflected in the ASR."
That is a breathtakingly bad process. Epic, in fact.
Thousands of security analysts around the country are feeling
Not what my news source said (Score:2)
My news source says that this guy was actually legitimately buying the towers, but because of some backroom HILBAMA scheme after he spent the money it got reversed, he was blamed for hacking.
As far as motivation, according to several anonymous sources that couldn't be contacted for further details, word on the street was this guy had a lot of secret details THE GOVERNMENT DOESN'T WANT YOU TO KNOW about the REAL story of..... BatBoy!