Telstra routers vulnerable to attack

For discussions about security.
Post Reply
Message
Author
cthisbear
Posts: 4422
Joined: Sun 29 Jan 2006, 22:07
Location: Sydney Australia

Telstra routers vulnerable to attack

#1 Post by cthisbear »

Telstra broadband routers vulnerable to attack.

" Australia's largest telco urges customers to apply patch.

Hardcoded usernames and passwords have been discovered in a
recent line of Telstra broadband routers that could allow attackers
access to customer networks. "

http://www.itnews.com.au/News/322758,te ... ttack.aspx

Chris.

User avatar
Ray MK
Posts: 774
Joined: Tue 05 Feb 2008, 09:10
Location: UK

#2 Post by Ray MK »

Hi Chris
Have you seen this?
http://socialbarrel.com/top-10-software ... ems/45794/
scary?
regards - ray
[b]Asus[/b] 701SD. 2gig ram. 8gb SSD. [b]IBM A21m[/b] laptop. 192mb ram. PIII Coppermine proc. [b]X60[/b] T2400 1.8Ghz proc. 2gig ram. 80gb hdd. [b]T41[/b] Pentium M 1400Mhz. 512mb ram.

User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

#3 Post by Dave_G »

Ray MK wrote:
The article is certainly an eye opener but something does not add up.
The author first states that Microsoft products don't even feature on the top 10
but then goes on to write that most if not all of the top 10 software with
security holes " Allow obtaining remote access to a system and run arbitrary code using the privileges of a local user account."

I'm willing to bet that this applies to Windows machines and not Linux ones.
So what if Win7 and 8 are more secure if the other software running on it
have more holes then Swiss cheese.

Dave.

User avatar
sickgut
Posts: 1156
Joined: Tue 23 Mar 2010, 19:11
Location: Tasmania, Australia in the mountains.
Contact:

#4 Post by sickgut »

i keep telling people that every communications device that is sold to the public has hardware/ software backdoors, its a requirement by law in most countries around the world.

it doesnt even matter if your country doesnt have such laws, if you buy your hardware/ software from a country that does enforce such things then your still boned.

you can only hope to keep average civilians out of your network. There are companies that specialize in selling software packages that let you access networked devices similar to the way high end law enforcement does. It will cost you $250,000 but it does exist. I dont know the legality of such things but they exist.

i think the only security people can be sure of is keeping average joe out of your wireless network with an encrypted password. The rest is pointless, if a hacker wants to he can mess up your network at will. The thing is that average people dont have anything interesting to steal or sabotage. Having nothing of useful interest to a hacker is your only protection.

Then there is the government(s) and you cant hide anything from them. The backdoors are there but they dont even need to know the particular details of any back door, they are there and the government user can simply access your mobile phone/ internet connected ipad/ computer etc with a click of a button.

the only way to stop the government listening to you in your own house in talking distance to your cell/ mobile phone is to remove the battery. Even if its turned off, the mic is still transmitting. The same is true for webcams and mics on your laptop/ desktop computer system. The general public is conditioned to think that the light next to the camera on your webcam tells you if its activated or not. This is a deliberate tactic. Everyone is like "but the little green or blue light on the webcam isnt on, so its completely impossible for anyone to see me..." if you want privacy, then manually remove the microphone in your laptop and put some tape over the webcam.

find out what the laws are in your country. its illegal to have communications device that doesnt have a backdoor to let the government listen to you or see you.

security is completely pointless. simply dont connect a computer with important or sensitive information to the internet or broadcast your network all over town via wifi.

User avatar
Dave_G
Posts: 453
Joined: Thu 21 Jul 2011, 13:53

#5 Post by Dave_G »

Have to agree with sickgut.

Even if a communications device like a mobile phone didn't have a built in back door,
most countries insist that all service providers (internet and email included)
provide a means for interception of that data/voice/video, and since you have
to use a service provider, they have it all.

The only real way to disable a built-in webcam and microphone on a laptop
is to stick something over the camera (like insulation tape or a stick-it note)
and connect a 3.5mm stereo jack with nothing connected to it to the MIC input connection.

Dave.

Post Reply