Home | Community | Message Board

Original Seeds Store
This site includes paid links. Please support our sponsors.


Welcome to the Shroomery Message Board! You are experiencing a small sample of what the site has to offer. Please login or register to post messages and view our exclusive members-only content. You'll gain access to additional forums, file attachments, board customizations, encrypted private messages, and much more!

Bridgetown Botanicals Shop: Bridgetown Botanicals

Jump to first unread post Pages: 1
Invisibletdubz
Male User Gallery


Registered: 02/26/12
Posts: 5,586
Hacker Claims To Push Malicious Firmware Update to 3.2 Million Home Routers
    #23901563 - 12/06/16 09:41 PM (7 years, 1 month ago)

https://motherboard.vice.com/read/hacker-claims-to-push-malicious-firmware-update-to-32-million-home-routers

One of the hackers who amassed a new massive army of zombie internet-connected devices that can launch disruptive cyberattacks—even by mistake—now claims to have taken control of 3.2 million home routers, taking advantage of a flaw that allowed anyone to connect to them.

On Monday, the cybercriminal, who calls himself BestBuy, claimed to have set up a server that would automatically connect to vulnerable routers and push a malicious firmware update to them. This, he said, would grant him persistent access and the ability to lock out the owners as well as internet providers and device manufacturers.

Read more: Hacker Pushes Malicious Update to 3.2 Million Routers, Making Them Unpatchable

“They are ours, even after reboot. They will not accept any new firmware from [Internet Service Provider] or anyone, and connect back to us every time :smile:,” BestBuy said in an online chat. “Bots that cannot die until u throw device into the trash.”

To prove his claims, BestBuy shared a URL that appeared to show the live stats of his Access Control Server (ACS), which he was using to push out the malicious firmware. As I browsed to the site, the number of “accessed” devices grew from 500,000 on Monday morning, to more than 1.3 million a few hours later.



A screenshot showing the stats of BestBuy’s alleged Access Control Server.
BestBuy also shared the credentials to access his server pushing out the firmware updates. The panel I got access to showed a long list of allegedly infected routers, with their model name and unique ID. I shared a bunch of screenshots I took of the server backend and showed them to several security experts, who all agreed it was almost impossible to confirm independently without finding an infected device in the wild.

Yet, they all agreed that BestBuy’s story was plausible, and potentially really bad news for the routers’ owners as well as their internet providers.

“They are ours, even after reboot. [...] Bots that cannot die until u throw device into the trash.”
“Jesus christ,” said Darren Martyn, a security researcher who’s been tracking the recent wave of cyberattacks coming from hacked Internet of Things devices infected with Mirai. “Assuming [the hackers] didn't fuck up repacking the firmware, and they didn't do anything spectacularly stupid when backdooring it, their firmware backdoors will probably work just fine.”

“What they just pulled is shenanigans of the highest quality,” he added.



A screenshot of BestBuy's ACS showing a partial list of targeted routers.
None of the security researchers I contacted, however, could find one of the hacked routers in the wild. Andrew Tierney, a researcher who works for the UK-based security firm Pen Test Partners, also said that it’s possible the hackers botched some firmware updates, given that it’s hard to do them right, especially considering how many different devices they were trying to take control of.

“[It] would mean patching firmware for each different model and possibly even for each ISP,” he told Motherboard in an online chat. “Some firmware takes 15 minutes to patch, other can take days. But it is easy to mess up.”

When I asked BestBuy what he intended to do now with all his newly infected routers, he simply said: “Prolly [sic] get drunk(er).”


Extras: Filter Print Post Top
Offline5150
phantom
 User Gallery
Registered: 09/01/06
Posts: 5,437
Last seen: 4 years, 2 months
Re: Hacker Claims To Push Malicious Firmware Update to 3.2 Million Home Routers [Re: tdubz]
    #23907106 - 12/08/16 02:11 PM (7 years, 1 month ago)

Apex hackers r insane


--------------------
"the way of the warrior is the resolute acceptance of death"

Miyamoto Musashi


Extras: Filter Print Post Top
InvisibleChakanooga
Always Lmao
Male User Gallery


Registered: 04/24/15
Posts: 2,710
Loc: Wonderland
Re: Hacker Claims To Push Malicious Firmware Update to 3.2 Million Home Routers [Re: 5150]
    #23916427 - 12/11/16 02:03 PM (7 years, 1 month ago)

I can see this as being possible, but there is no way he is alone. Possessing that much is way too much for one person, he either has a team, is working for someone, or is just working for the government.

Or this is just a big hoax to promote best buy. Who knows.


--------------------
Official:
Facemelter
HyperspaceTraveller
NostalgicGamer


Extras: Filter Print Post Top
Jump to top Pages: 1

Bridgetown Botanicals Shop: Bridgetown Botanicals


Similar ThreadsPosterViewsRepliesLast post
* hackers steal $45mil in credit card details from TJ Maxx - "Largest credit card heist in history" kotik 1,052 5 03/31/07 02:02 PM
by delta9
* Law that proposes jailing hackers for life passes Lana 928 1 11/16/02 06:46 AM
by LoverofEarth
* Firmware upgrade---How do I do it?? Se77vN 833 4 10/17/05 01:52 PM
by drtyfrnk
* Tomato firmware beatyou 2,315 3 02/07/08 02:33 PM
by beatyou
* after winxp update John 615 4 02/20/05 08:14 AM
by John
* iPhone firmware haxjester 412 0 09/04/08 11:12 AM
by haxjester
* Old hacker tech RadioActiveSlug 2,088 16 06/19/03 03:12 PM
by Anonymous
* hackers target VerChip... and succeed! kotik 1,348 8 07/27/06 11:34 AM
by kotik

Extra information
You cannot start new topics / You cannot reply to topics
HTML is disabled / BBCode is enabled
Moderator: trendal, automan, Northerner
295 topic views. 0 members, 1 guests and 0 web crawlers are browsing this forum.
[ Show Images Only | Sort by Score | Print Topic ]
Search this thread:

Copyright 1997-2024 Mind Media. Some rights reserved.

Generated in 0.023 seconds spending 0.007 seconds on 14 queries.