More than 700,000 ADSL routers distributed around the world, including in the Philippines, have a directory traversal flaw in their webproc.cgi firmware modules, which can be used by remote attackers to extract data, including admin credentials and configuration settings, from the router’s config.xml file.
Using a free IP scanner you can scan unlimited IP address which you can open via port 80 or Web Browser Port 22 for Telnet Access Port 23 for SSH Port 443 for https access.
What will happen if your modem is being remote.
1. Your Internet User Account Mac Address can be clone and use it to reconnect disconnected modem which can be also sell.
2. Sudden Change of Internet Speed , the attacker can switch your account to a lower speed . Imagine you having 10 mbps and it drops to 2mbps.. If you have a Internet Shop this is headache.
3. Remotely Firmware Destroyed , this one is a fatal for Wimax Modem of Globe and Smart Telecom you need a new modem. ( illegally can be repair )
Three Giant Internet Service Provider in the Philippines
SMART
GLOBE
Globe Telecom
The most well known hacking now is Wimax Internet, since 2009 to this day Globe Telecom Wimax are easily to remote and generate Mac Address . Globe Telecom change its authentication when it change or upgrade new Modem and Firmware.
Their latest wimax modem are Green Packet known for OD Mac address and Simbase
Huawei LTE Modem a Sim base can be Unlocked
However old Wimax modem like 622, 622i, 622m, 623m are still working they can be reconnect by changing mac address via telnet and change authentication. New authentication have different password unlike the 2008 to 2014 the password is same of the user ID.
Advance user of Globe Wimax or Unlimted internet seller use customize firmware or config to protect their modem from remote access
Globe ADSL can be remote get the user id and password or switch the account you can even change WiFi password remotely . They have 2 modem Prolink and Aztech. They have latest firmware that disabled to view the password.
SMART
First Canopy user from Motorola remotely access can be clone the mac , color code and transfer to a disconnected Smart Canopy. Until they upgrade firmware and change the user name Remote Access this kind of modem is a little hard and long process to do so.
Smart Mybro and PLDT HomeBro Green Packet modem can be remotely access and can be reconnect by change mac method. PLDT and Smart Change their authentication the use key certificate and pempem key method and upgrade their firmware. Hacker found a way to copy these authentication certificate and key via remote ssh or telnet.
These modem can be change Firmware and its amazing it can also connect to Globe Frequency yes this modem can be connect to Globe Network.
PLDT
Can be remote access by default admin can view user account old modem and transfer to other modem.
WiFi password is hackable if default password has not change.
They always upgrade there modem latest modem firmware like PLDT Fibr PLDT Home DSL can not view user account password , but still i can be remotely access.
Tips How to Protect your Modem
1. Change the default Admin and password
2. Change your default WiFi password
3. For Wimax user Disabled all WAN port
0 comments:
Post a Comment