Hacker leaks passwords for more than 500,000 servers, routers, and IoT devices

kltaylor
kltaylor Member, Beta Tester Posts: 1,231
1000 Comments 500 Likes 50 Answers 100 Awesomes
✭✭✭✭✭✭
in Devices & Security #1
(Source)



A hacker has published this week a massive list of Telnet credentials for more than 515,000 servers, home routers, and IoT (Internet of Things) "smart" devices.

The list, which was published on a popular hacking forum, includes each device's IP address, along with a username and password for the Telnet service, a remote access protocol that can be used to control devices over the internet.

According to experts to who ZDNet spoke this week, and a statement from the leaker himself, the list was compiled by scanning the entire internet for devices that were exposing their Telnet port. The hacker than tried using (1) factory-set default usernames and passwords, or (2) custom, but easy-to-guess password combinations.


To read more, click on the Source link above.

"There's a fine line between audacity and idiocy."
-Warden Anastasia Luccio, Captain
Tagged:
[Deleted User]Robin_Ex_FingNetNoob63rootedKjoburnLifeguard74John

Comments

  • kltaylor
    kltaylor Member, Beta Tester Posts: 1,231
    1000 Comments 500 Likes 50 Answers 100 Awesomes
    ✭✭✭✭✭✭
    #2
    Everyone, please be wary that using default passwords or those that are easily guessed are not suggested to use in our online world.  Please use a robust password, capital and lowercase, numbers and special characters in your passwords.  Please, please also consider changing the passwords on a frequency basis.
    "There's a fine line between audacity and idiocy."
    -Warden Anastasia Luccio, Captain
    [Deleted User]NetNoob63Kjoburn
  • Marc
    Marc Moderator, Beta Tester Posts: 3,187
    250 Answers 1,000 Likes 2500 Comments 250 Awesomes
    ✭✭✭✭✭✭✭
    #3
    Thanks for the info @kltaylor...   If I might add, consider using a password manager.  The better ones can help you generate a really strong password with a side benefit of storing them so you will not forget them.  A good thread was started on the forums here on that very topic...
    Thats Daphnee, she's a good dog...
    rooted
  • rooted
    rooted Moderator Posts: 898
    250 Likes 500 Comments 50 Answers Third Anniversary
    ✭✭✭✭✭
    #4

    Yeah I had a bad habit of reusing passwords until these leaks started happening, now I generate strong random passwords and use a manager.

  • John
    John Member Posts: 111
    Second Anniversary 25 Likes 10 Comments 5 Awesomes
    ✭✭✭
    #5
    Scary stuff and agree a password manager is a must nowdays, and of course 2-step for sites that off the option.  I can recommend password1 and lastpass which both work well on PC and iOS
  • seth
    seth Member Posts: 6
    First Anniversary First Comment Photogenic
    #6
    If you are using chrome, download and install the password-checkup-extension.
    At least you will be warned when a password you used is leaked.

    kltaylorrooted
  • kltaylor
    kltaylor Member, Beta Tester Posts: 1,231
    1000 Comments 500 Likes 50 Answers 100 Awesomes
    ✭✭✭✭✭✭
    #7
    Thanks, @seth, that's really good advice.
    "There's a fine line between audacity and idiocy."
    -Warden Anastasia Luccio, Captain
  • rooted
    rooted Moderator Posts: 898
    250 Likes 500 Comments 50 Answers Third Anniversary
    ✭✭✭✭✭
    #8

    This feature is actually built into chrome. Launch chrome and go to chrome://flags then search for "Password Leak Detection" and enable.

    Definitely recommend enabling this feature and it's available on mobile where plug-ins aren't available.

    Thank you for the recommendation @seth

  • Lifeguard74
    Lifeguard74 Member Posts: 8
    First Anniversary Name Dropper First Comment Photogenic
    #9

    Thanks for the information much appreciated @seth

Categories