Another topic[1] that will be presented at the 32nd Chaos Communication Congress in Hamburg:
The German developer Alexander Graf found badly protected SSH passwords in the memory of his cable modem, which granted access to the maintenance network of Kabel Deutschland, a Vodafone company.
In doing so, he could freely look at the modems of 2.8 million Germans.
When searching for a way to make his VoIP device work with the modem (Fritzbox), he discovered a hidden network connection “wan0”, which was part of the operations & maintenance network. Through that network he could access other modems via Telnet.
Then he managed to execute any code with root access on the modems, and in doing so he managed to obtain their passwords and could call for free using their network connection.
Describing the discovery of the issue:
▻http://www.heise.de/newsticker/meldung/Fatales-Sicherheitsleck-bei-Kabel-Deutschland-Vodafone-bedrohte-Millionen-Kabe
▻http://www.heise.de/ct/ausgabe/2016-1-Schwerwiegende-Sicherheitsluecken-bei-Kabel-Deutschland-3047883.html
His topic to be presented on the Chaos Communication Congress :
▻https://events.ccc.de/congress/2015/Fahrplan/events/7133.html
Kabel Deutschland says they have fixed the problem now:
▻http://www.telecompaper.com/news/kabel-deutschland-repairs-router-security-flaw--1120500
One month after notifying the provider, Kabel Deutschland stated that customers are now isolated from one another.
#DOCSIS
#cable_modem
#password
#security_flaw
___