Backdoored firmware lets China state hackers control routers with “magic packets”

L4sBot@lemmy.world · 9 months ago

Backdoored firmware lets China state hackers control routers with “magic packets”

spacecadet@lemm.ee · 9 months ago

In an advisory of its own, Cisco said the threat actors are compromising the devices after acquiring administrative credentials and that there’s no indication they are exploiting vulnerabilities.

If they aren’t exploiting vulnerabilities (and this is all because of mishandling of admin creds) then why are only Cisco routers being targeted?

Darkard@lemmy.world · 9 months ago

They are loadi g in modified firmware apparently. Will be specific to Cisco hardware.

It’s all kinda irrelevant though. If they managed to figure out your weak ass admin creds and you left your router open to access with no ACLs then installing some sneaky firmware is the least of your worries

spacecadet@lemm.ee · 9 months ago

True, I wonder how many of these admin creds were on internal wikis or something like user: admin password: admin123

naticus@lemmy.world · 9 months ago

How did you get my password? Please delete this.

spacecadet@lemm.ee · 9 months ago

12345? That’s the combination to my luggage