Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hidden Backdoor Discovered In Chinese IoT Devices (techradar.com)

Posted by EditorDavid on from the telnet-trouble dept.

"A backdoor has been found in devices made by a Chinese tech firm specializing in VoIP products," reports TechRadar. An anonymous reader quotes their article: Security outfit Trustwave made the discovery of a hidden backdoor in DblTek's devices which was apparently put there to allow the manufacturer access to said hardware -- but of course, it's also open to being exploited by other malicious parties. The backdoor is in the Telnet admin interface of DblTek-branded devices, and potentially allows an attacker to remotely open a shell with root privileges on the target device.

What's perhaps even more worrying is that when Trustwave contacted DblTek regarding the backdoor last autumn -- multiple times -- patched firmware was eventually released at the end of December. However, rather than removing the flaw, the vendor simply made it more difficult to access and exploit. And further correspondence with the Chinese company has apparently fallen on deaf ears.
The firmware with the hole "is present on almost every GSM-to-VoIP device which DblTek makes," and Trustwave "found hundreds of these devices on the net, and many other brands which use the same firmware, so are equally open to exploit."

21 of 85 comments (clear)

  1. Price for cheap labour by aussie_a · · Score: 5, Interesting

    There is a price for outsourcing all of your manufacturing needs to companies in countries with authoritarian governments. Having state sponsored Spyware in your devices is one such cost.

    1. Re:Price for cheap labour by rtkluttz · · Score: 4, Insightful

      There is a price for putting things on the internet that require command and control outside of the owners network. Authoritarian government == Authoritarian company. I love connected things but not when I have to ask someone elses servers to access or do shit with equipment behind MY firewalls.

      --
      Digital is, by definition, imperfect. Analog is the way to go.
    2. Re:Price for cheap labour by Anonymous Coward · · Score: 2, Insightful

      What was the price the world has paid for years of using American products, not little IoT thingies, but huge equipment for Internet backbone services from Cisco, Juniper etc., being loaded with backdoors etc. by NSA?

    3. Re: Price for cheap labour by Anonymous Coward · · Score: 2, Informative

      FRom Snowden
      http://www.infoworld.com/article/2608141/internet-privacy/snowden--the-nsa-planted-backdoors-in-cisco-products.html

    4. Re:Price for cheap labour by brunes69 · · Score: 2

      "Never attribute to malice that which is adequately explained by stupidity" - Hanlon's razor

    5. Re:Price for cheap labour by sit1963nz · · Score: 2

      You do know the USA does this too.

  2. Backdoors in Chinese made/sold devices? by Gojira+Shipi-Taro · · Score: 4, Funny

    I've just shat myself with surprise.

    --
    "Oh my God. This is terrible. This is the end of my Presidency. I'm fucked."; ~ Donald J. Trump
    1. Re:Backdoors in Chinese made/sold devices? by K.+S.+Kyosuke · · Score: 2

      Your life must be very shitty, then.

      --
      Ezekiel 23:20
  3. I'm shocked! by Anonymous Coward · · Score: 4, Funny

    Shocked to find there's gambling in this establishment.

  4. Telnet port blocked at router. Duh. by HornWumpus · · Score: 2

    This is made worse by the fact that default router configurations leave telnet open.

    Could be worse. Close that port and it's a non-issue. Should have closed it with the last batch.

    --
    John McAfee 'It was like that time I hired that Bangkok prostitute; to do my taxes, while I fucked my accountant'
    1. Re:Telnet port blocked at router. Duh. by aaarrrgggh · · Score: 3, Informative

      Device pings manufacturer's server every hour or so. Translation remains active for inbound connection, even with stateful firewall.

      You really have to segregate everything to stay protected, and block or proxy outbound connections for IoT devices.

      It gets harder when all the traffic is on 443.

  5. X-10 by AndyKron · · Score: 3, Funny

    And this is why I don't have any IoT devices. X-10 still works for me.

    1. Re:X-10 by Anonymous Coward · · Score: 2, Insightful

      Referring to every router and gatway as an "IoT device" is getting stupid. This has nothing to do with X10 or lightbulbs or switches or home automation.

    2. Re:X-10 by 93+Escort+Wagon · · Score: 2

      "Backdoor found in Chinese-made VoIP hardware" doesn't carry the same cachet though.

      --
      #DeleteChrome
  6. News Just in .. Chinese device has piss poor secur by Anonymous Coward · · Score: 2, Informative

    I'm so worn down by the number of news items about (yet another) shitty Chinese device having some a backdoor/malware/shitty or non existent security that I just assume that every device made in China has these flaws, we just haven't yet heard of them in the wild.

    What would be more shocking to me is a news story about a Chinese device that has been security audited and found to be secure. When that day comes I will be truly suprised.

  7. Sounds like China alright by Quietti · · Score: 3, Interesting

    China strikes me as incapable of responding to bug reports, because a bug report puts the manufacturer in a bad light and that amounts to losing face.

    Case in point:

    I was maintaining a driver for a widespread SoC. The driver would flat out crash the Linux kernel during bootup (kernel oops and complete freeze) at every other kernel release, but only when booted off a specific hardware vendor's product. On other vendors' products based on the same SoC, no such problem.

    I contacted the SoC's manufacturer, asking if that particular issue rang a bell. It didn't. However, their product specialist recalled that this particular hardware vendor had very pointy questions about hardware interrupts, back when they were building their BIOS image. As far as he could guess, the vendor had probably messed their build configuration and produced faulty BIOS images whose bugs were triggered by changes in the Linux kernel's other subsystems at every other release.

    He gave me the name of a contact person at the hardware vendor, suggesting to report the bug to them. My e-mail was passed around from department to department – OEM support, Marketing, Sales, etc. – to no avail. One department assumed that I didn't understand some BIOS settings, another presumed that I was placing an order that would require a custom BIOS build. No, I'm reporting a defect in the BIOS sold in your products. I'm asking you to find the cause of the issue I've described – which does NOT affect other products based on the same SoC reference design that are sold by other hardware vendors, so it HAS to be a BIOS bug – and to please release a fixed BIOS image. At that point, someone with a modicum of English skills figured out what the word "defect" means and promised to contact me as soon as they found the solution. They never did. They also stopped responding to any further e-mail.

    China. Sigh.

    --
    Software is not supposed to be about how to work around a useability issue. - Ken Barber
    1. Re:Sounds like China alright by Mandrel · · Score: 2

      Companies like these know that support is their biggest cost. Their aim is to have their products bought because they are a cheap and readily-available option that promises to do what people want. How well they do this isn't important if they can get customers past a return impetus, and if they can rely on few customers seeing a product review or security alert. They then make it hard to contact and converse with support, like your experience, but also often by not having a website, an English website, or an email address, or even by not listing a manufacturer on their packaging.

      There's so much potential for Chinese/Taiwanese companies that can be both reasonably priced and keen on both quality and customer service.

  8. No way by JustAnotherOldGuy · · Score: 3, Insightful

    "Hidden Backdoor Discovered In Chinese IoT Devices"

    Shocking *cough*.

    Seriously, this should surprise no one. No one who's been paying attention, anyway. At this point I pretty much assume that any internet-enabled Chinese hardware likely contains some sort of backdoor, hard-coded passwords, or other hidden stuff.

    --
    Just cruising through this digital world at 33 1/3 rpm...
  9. IoT - really ? by slincolne · · Score: 3, Informative
    Does this device sound like an IoT gadget ?

    From reading the article (yes - I know - and no I'm not new here) it's nasty piece of telephony hardware and more like a router than anything else. I know it's a current meme to thrash IoT as a platform but this is not a case of a programmer taking shortcuts on a feature constrained device, but rather a programmer or designer who is just dumb. This has been a problem long before the IoT ever came around.

  10. Re:USB temp device by lokedhs · · Score: 2
    I agree with this, abd I would also like to add that Using Qubes OS makes this a much less painful process. Not as simple as a point-and-click operation, but at least manageable.

    https://www.qubes-os.org/doc/a...

  11. Not IOT by campuscodi · · Score: 2

    It's not an IoT device. It's basic networking equipment. Stop calling everything IoT.