R'lyeh Consulting, LLP-The Internet of Things with Pre-Installed Backdoors

Started by Netwörkheäd, August 13, 2016, 12:00:59 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Netwörkheäd

August 13, 2016, 12:00:59 AM
The Internet of Things with Pre-Installed Backdoors

Threatpost: https://threatpost.com/undocumented-snmp-string-exposes-rockwell-plcs-to-remote-attacks/119865/ The SEO-friendly URL says it all. The Rockwell PLCs in question have a RW SNMP community common to a range of their devices, undocumented, but if you can find it, you can light up every one of them. Correction: there’s another SNMP string that allows even more access, also undocumented. That’s what’s makes […]



Threatpost: https://threatpost.com/undocumented-snmp-string-exposes-rockwell-plcs-to-remote-attacks/119865/


The SEO-friendly URL says it all. The Rockwell PLCs in question have a RW SNMP community common to a range of their devices, undocumented, but if you can find it, you can light up every one of them.


Correction: there’s another SNMP string that allows even more access, also undocumented. That’s what’s makes this newsworthy. Not one backdoor, that’s old news. Two pre-installed backdoors, now we got us a story!


If you work with PLCs, read the article above, check to see if you’re using any of them, and then contact the manufacturer. You need to get all over this like a donkey on a waffle.


Source: The Internet of Things with Pre-Installed Backdoors

From http://aohell.com/
Let's not argue. Let's network!
Print
Go Up Pages1
User actions