Half a Million IoT Device Passwords Published

2020-01-22 12:09

It's a list of easy-to-guess passwords for IoT devices on the Internet as recently as last October and November.

A hacker has published this week a massive list of Telnet credentials for more than 515,000 servers, home routers, and IoT "Smart" devices.

The list, which was published on a popular hacking forum, includes each device's IP address, along with a username and password for the Telnet service, a remote access protocol that can be used to control devices over the internet.

According to experts to who ZDNet spoke this week, and a statement from the leaker himself, the list was compiled by scanning the entire internet for devices that were exposing their Telnet port.

The hacker than tried using factory-set default usernames and passwords, or custom, but easy-to-guess password combinations.

News URL

https://www.schneier.com/blog/archives/2020/01/half_a_million_.html

#IOT