We recently saw an example involving about 185,000 TP-Link devices, and apparently, a lot of well-used routers (this time in Brazil) are also susceptible to attack.
According to Ankit Anubhav, a security expert at NewSky Security, more than 5,000 Datacom brand routers used by Oi were delivered to customers without a configured Telnet password.
The vulnerability, already being investigated by the carrier, was found in the DM991CR, DM706CR and DM991CS models.
Although some of them even have a password, the security researcher informs that by pressing the “Enter” key through remote access, a malicious hacker will be able to gain unauthorized access to the product settings.
Entering the modem system you can configure them to bomb a site with multiple simultaneous accesses, or even use them for illicit operations.
NewSky said it was difficult to notify Oi about the problem.
This led to the launching of CERT.br (Center for Studies, Answers and Treatment of Security Incidents in Brazil), part of NIC.br, which in addition to coordinating internet activity also manages web addresses in Tupinikin lands.
The recommendation for the moment is for customers to change the default passwords for their devices – something many does not bother to do – to make it harder to hack, choosing long passwords with upper and lower case letters, numbers and, if possible, characters special.
If you do not know how to get access to the modem settings, just check the user manual (or do a quick search on Google, as this information is usually very easy to find).
Source: Bleepingcomputer