Reviews:
 ·Optimum Online
 ·Verizon FiOS
| reply to wifi4milez
Re: Who's next? said by wifi4milez:I hope they dont discover this vulnerability for the Fios Actiontec devices. The FIOS device is required in most cases, so people would be at much hiher risk. Broadband tiers are provisioned in the C/O computers (fios)... not by the routers, whereas a cablemodem provisioning has much to do with a file within cablemodems that provision speed/terms of service/features. |
|
 swintecPremium,VIP
join:2003-12-19
Alfred, ME
kudos:3
 ·RapidVPS
 ·Sprint Mobile Br..
 ·VoicePulse
·RoadRunner Cable
| said by tmc8080:said by wifi4milez:I hope they dont discover this vulnerability for the Fios Actiontec devices. The FIOS device is required in most cases, so people would be at much hiher risk. Broadband tiers are provisioned in the C/O computers (fios)... not by the routers, whereas a cablemodem provisioning has much to do with a file within cablemodems that provision speed/terms of service/features. What does that have to with anything? The hack for this router/modem combo unit allows individuals to access the administrative menus over the internet. Not play around with speed settings.
--
Block Accounts | UseNet Now |
|
 wifi4milezBig Russ, 1918 to 2008. Rest in Peace
join:2004-08-07
New York, NY | reply to tmc8080
said by tmc8080:said by wifi4milez:I hope they dont discover this vulnerability for the Fios Actiontec devices. The FIOS device is required in most cases, so people would be at much hiher risk. Broadband tiers are provisioned in the C/O computers (fios)... not by the routers, whereas a cablemodem provisioning has much to do with a file within cablemodems that provision speed/terms of service/features. This particular hack has nothing to do with speed tiers (its not "unlocking" the modem). It appears as if there is some security issue that allows someone on the public internet to control (and make changes to) the internal menus and config files of the TWC router. This could be something as annoying as having the hacker change the login/password, or it could even allow them to potentially re-route traffic to malicious websites.
--
"If it's to be a bloodbath, let it be now. Appeasement is not the answer."
-Ronald Reagan-
»www.theadvocates.org/quizp/index.html
|
|
|
|
| said by wifi4milez:it could even allow them to potentially re-route traffic to malicious websites. That, I think would be the worst outcome. Especially if the malicious website was benign looking. For example, a transparent proxy. So a hacker hits your cable modem and redirects all traffic through his proxy. You then go to your online bank's website, your web e-mail site, Paypal, etc.
All of them work fine and you take all usual precautions (typing in address bar, up to date security software, etc). Still, you're compromised because the hacker now has your account information the minute you hit Submit. He can now clean you out whenever he wants.
Later, if he wants to cover his trails, he can re-log back into your cable modem and revert his changes so it looks like the cable modem was never tampered with.
--
-Jason Levine
Support a children's charity. Buy a calendar and/or a photo book. Shooting For A Cause |
|
| Already done |
|
 jmn1207Premium
join:2000-07-19
Ashburn, VA | reply to Jason Levine
If you are simply passing through a hacker's intercepting proxy, unless the bank site is fake and collecting your personal data, I would think that SSL or whatever the banks use nowadays, would prevent eavesdropping. I thought that was the purpose of secure sites? Only the end points have the key, the client and server.
I don't know too much about any of this stuff, so please don't clobber me for my ignorance, I'm just curious. I realize this is a real security threat, but I would hope that it's more challenging than just creating a simple proxy to steal webmail and bank access. |
|
| quote:
The SSL vulnerability allowed Marlinspike to create what he called a universal wildcard certificate that caused Firefox to authenticate every domain name on the internet. He did so by applying for a normal certificate for his website thoughtcrime.org. In the commonName field he listed the site as *\0.thoughtcrime.org, causing the browser to believe the certificate was universally valid.
»www.theregister.co.uk/2009/08/04···_update/
There's a few vulnerabilities out there... |
|
jmn1207Premium
join:2000-07-19
Ashburn, VA | It looks as if that has already been patched. The browser I normally use does not currently show any unpatched Secunia advisories, and the developers have been very quick to respond when potential problems do appear.
A fake site might be able to mimic Wells Fargo's site, but if someone attempts to log in and check their account, I would think it would be immediately obvious that something was not quite right. Recent transactions would not be able to be forged on a fake site unless the bank's site, itself, was completely compromised. Even if a browser is fooled into thinking the site is legit, I would be EXTREMELY concerned if the site popped a message claiming to be temporarily down after entering my login credentials. I'd be on the phone immediately.
There is only so much I can do, within reason, to protect myself. As long as more valuable data is out there that is much easier to get to, I won't panic. FiOS is so fast and reliable, any phantom proxy being used had better be damn fast with very low latency, otherwise I'd be doing all kinds of tests to see what the problem might be, which could possibly expose the security problem, or at least put me on notice to stay away from more security sensitive sites until the issue can be resolved. |
|
| It's a man in the middle attack, the attacker intercepts the data, and passes it through after recording it. Think of it as a guy standing in line in front of you that relays all your information to the teller, not only do you and the teller complete the transaction in the normal manner but the guy in the middle has all the data too. The problem as already noted is that it won't work on an encrypted connection.
You shouldn't be passing ANY login information in clear text. If the connection isn't encrypted you shouldn't be logging in. |
|
