Source |
ZD Net |
Identifiant |
2140223 |
Date de publication |
2021-01-02 03:59:00 (vue: 2021-01-02 06:06:20) |
Titre |
Backdoor account discovered in more than 100,000 Zyxel firewalls, VPN gateways |
Texte |
The username and password (zyfwp/PrOw!aN_fXp) were visible in one of the Zyxel firmware binaries. |
Envoyé |
Oui |
Condensat |
000 100 account backdoor binaries discovered firewalls firmware fxp gateways more one password than username visible vpn zyfwp/prow zyxel |
Tags |
|
Stories |
|
Notes |
|
Move |
|
Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2021-01-06 11:44:52 |
(Déjà vu) Backdoor in Zyxel Firewalls and Gateways (lien direct) |
This is bad:
More than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root access to devices via either the SSH interface or the web administration panel.
[…]
Installing patches removes the backdoor account, which, according to Eye Control researchers, uses the “zyfwp” username and the “PrOw!aN_fXp” password.
“The plaintext password was visible in one of the binaries on the system,” the Dutch researchers said in a report published before the Christmas 2020 holiday... |
|
|
|