Hacktivist collective NullCrew took credit for the attack against Comcast Wednesday. The group posted a Pastebin document full of leaked information as proof. The compromised mail servers apparently run on Zimbra, a groupware email server client whose service was the target of the attack. NullCrew was able to exploit a local file inclusion (LFI) vulnerability in LDAP to secure access to the credentials and passwords of the company s servers. The hack is the second in the past week following Bell Canada’s announcement that it was breached on Sunday.
Source: https://threatpost.com/hacktivist-collective-takes-credit-for-comcast-mail-server-hack/104110/