Idiot Hacker in

Idiot Hacker in http://www.dslreports.com/forum/r18191932 en Tue, 09 Feb 2010 21:25:30 EDT Tue, 09 Feb 2010 21:25:30 EDT Re: Idiot Hacker http://www.dslreports.com/forum/remark,18193335 snatman : "12345! Amazing, I got the same combination on my luggage!" /Spaceballs]]> http://www.dslreports.com/forum/remark,18193335 Wed, 18 Apr 2007 14:58:03 EDT Re: Idiot Hacker http://www.dslreports.com/forum/remark,18192343 openbox9 : And both you and your ISP knew about this insecurity. Same practice as almost every networking device sold. It's not the same as looking for, or discovering a "vulnerability" and then contacting the responsible party for a fix...or worse yet, posting it on the net for potential malicious activity.]]> http://www.dslreports.com/forum/remark,18192343 Wed, 18 Apr 2007 12:15:12 EDT Re: Idiot Hacker http://www.dslreports.com/forum/remark,18192198 gworkman7 : User: Admin
Pass: 1234

Not very secure, but that was how my ISP was shipping their modems a couple of years back. They were counting on self-installers to change the password when they got the modems.]]> http://www.dslreports.com/forum/remark,18192198 Wed, 18 Apr 2007 11:55:46 EDT Re: Idiot Hacker http://www.dslreports.com/forum/remark,18192077 openbox9 :

said by dwhayden

:

I made the decision to call the ISP instead of telling everyone else how to hack it.

This is generally the "socially accepted" avenue to taken by white hats and in general, better for the overall community than telling the whole world about the vulnerabilities. What this guy did is more black hat and he does deserve the consequences. Now if you had received little or no response from your ISP regarding the situation, the area becomes a little more grey, and usually you'll see the vulnerabilities published in an attempt to 'force' a response.]]> http://www.dslreports.com/forum/remark,18192077 Wed, 18 Apr 2007 11:30:23 EDT Idiot Hacker http://www.dslreports.com/forum/remark,18191932 dwhayden : Many years ago I discovered a security backdoor to my ISPs remote access server where I had gained full rights over the system. I made the decision to call the ISP instead of telling everyone else how to hack it. They hooked me up with the head engineer, and we worked together to plug the hole. The ISP was very grateful for the information, and gave me a year free access.

This stupid hacker took a security vulnerability, and made it much worse by publishing the how-to with passwords. The ISP was well within its rights to terminate this idiot's service. Hopefully charges will be filed against him for hacking since it's so obvious his motivation was not to protect the ISP and its subs, but to gain recognition. ]]> http://www.dslreports.com/forum/remark,18191932 Wed, 18 Apr 2007 11:03:52 EDT