Source |
Schneier on Security |
Identifiant |
2148854 |
Date de publication |
2021-01-06 11:44:52 (vue: 2021-01-06 21:08:19) |
Titre |
Backdoor in Zyxel Firewalls and Gateways (Recyclage) |
Texte |
This is bad:
More than 100,000 Zyxel firewalls, VPN gateways, and access point controllers contain a hardcoded admin-level backdoor account that can grant attackers root access to devices via either the SSH interface or the web administration panel.
[…]
Installing patches removes the backdoor account, which, according to Eye Control researchers, uses the “zyfwp” username and the “PrOw!aN_fXp” password.
“The plaintext password was visible in one of the binaries on the system,” the Dutch researchers said in a report published before the Christmas 2020 holiday... |
Envoyé |
Oui |
Condensat |
“prow “the 000 100 2020 access according account admin administration attackers backdoor bad: before binaries can christmas contain control controllers devices dutch either eye firewalls fxp” gateways grant hardcoded holiday installing interface level more one panel password patches plaintext point published removes report researchers root said ssh system than username uses visible vpn web which zyxel |
Tags |
|
Stories |
|
Notes |
|
Move |
|
Source |
ZD Net |
Identifiant |
2140223 |
Date de publication |
2021-01-02 03:59:00 (vue: 2021-01-02 06:06:20) |
Titre |
Backdoor account discovered in more than 100,000 Zyxel firewalls, VPN gateways |
Texte |
The username and password (zyfwp/PrOw!aN_fXp) were visible in one of the Zyxel firmware binaries. |
Envoyé |
Oui |
Condensat |
000 100 account backdoor binaries discovered firewalls firmware fxp gateways more one password than username visible vpn zyfwp/prow zyxel |
Tags |
|
Stories |
|
Notes |
|
Move |
|