Thanks to the advance of technology and tools hackers now can find vulnerable devices and transform them into botnets more easily and fast than ever.
A vulnerability that is present în some Huawei routers that are used by ISP allows hackers to identify whether the devices have default credentials or not – without ever connecting to them.
The exact vulnerability conde is CVE-2018-7900 and it exists in the router panel and allows credentials information to leak. Because of this leak hackers can simply perform a ZoomEye or Shodan IoT search to find the list of the devices that are having default passwords.
CVE-2018-7900 exists in the HTML source code of the login page because few variables are declared. One of the variables contains a specific value. But by monitoring this specific value, the hacker can find the device default password.
Remember everything can be hacked. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;
The big problem in this kind of cyber attack is given by the fact that a hacker can simply go to ZoomEye, find a list of devices, login, and hack them with minimal hacking skills
Good news is that Huawei has already released a fix and it is working with its customers to implement it across networks.
For the moment experts will not disclose the exact details of the flaw or the numbers of affected devices.
Many are concerned because this is an issue that is affecting carrier-level gear and it’s problematic because of its potential attack surface.
For example in 2018 CVE-2018-14847 (MikroTik) and CVE-2014-8361 were highly abused. Which resulted in a high number of devices that were affected.
Keep in mind that our modern society is dependent on computers, mobile devices, and the use of the internet always stay safe and secured.
We will continue to monitor this cybersecurity problem. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company’s network, tests like this include: penetration testing and ethical hacking.