Online security situation today…

We have spent few hours on scanning IP networks online, specially those near to us, in the city of The Hague / Den Haag.

and we have found out that there are still to many people that use technology in a very irresponsible and unsecured way.

for example people that have IP camera’s exposed to the internet with no username and password or with the default username passwords.

some people have their tv’s, tv / iptv boxes completely accessible from the internet without any username password.

others have even their electrical control thermostat etc… online with no security at all.

We have used a free tool called Angry Ip scanner and the FireFox internet browser, and just scanned the internet for 2-3 ports like 80 , 8080  etc… and in those few hours we were able to find dozens devices exposed to internet without any security.  Keep in mind we were not testing the strength of passwords, we were just checking devices with no username password and devices with default username passwords, and also we were not scanning for access to computers / servers / network hard-drives etc… this was just a basic scan.

Of course this is done by professionals and we have not broken in anywhere, we also have not change any settings on those devices. on some devices, specifically the tv boxes, we were able to send a message on tv screen to the owner / watcher and told them to secure their devices.

We have done this by disabling all addons on our browser so-that we cannot see the real video images of the camera, we just entered the interface had full control of it, checked if we can get in all sections and then we closed the session. This is very important to us and we also advise anybody who is doing vulnerability testing etc.. please respect peoples privacy.

Here under you will find the information that we found so-that you can have an idea about how easy it was, of course we will not publish all information just as is, we have changed some parts of ip info and wifi user pass, we don’t want the bad guys to get in and do damage. so here is part of what we were able to find.
http://xxx.xxx.1.190/desktop/index_framed.htm
wifi : xxxx8117  –   xxxxu2011

http://xxx.xxx.2.57/index_framed.htm
wifi : xxxxxx949  –    xxxxxxWkCJ73

http://xxx.xxx.10.232/main.htm
admin / no pass. (elro)

xxx.xxx.14.165
user : admin

http://xxx.xxx.114.245/index.asp

http://xxx.xxx.116.81/

tv box :
http://xxx.xxx.3.119/

tv box :
xxx.xxx.5.80

xxx.xxx.25.139
dreambox

DVR:
http://xxx.xxx.24.81/home.asp
admin

dvr :
xxx.xxx.26.13

belkin…
http://xxx.xxx.59.42/setup.htm

TP-link
http://xxx.xxx.60.194/

Elro camera :
http://xxx.xxx.64.176/main.htm
admin

IP cam :
http://xxx.xxx.64.212/img/main.cgi?next_file=main.htm
no user no pass

H264 Surveillance
http://xxx.xxx.244.174:8083/default.htm
admin admin

http://xxx.xxx.56.151:8080/

vivotek
http://xxx.xxx.67.196:8080/

DVR :
http://xxx.xxx.58.69:8080/

Router :
http://xxx.xxx.84.168/index.asp
admin 1234

DVR hikvision :

http://xxx.xxx.xxx.229
admin / 12345

DVR hikvision / Xyclop
xxx.xxx.96.99
admin / 12345

Avtech NVR :
http://xxx.xxx.105.193/index.htm
admin / admin

Geovision :
xxx.xxx.108.179
admin / admin

Thermostat :
http://xxx.xxx.108.219:8080/index.html

Conclusion :

To many people still don’t think it true, just buy a device and connect it to the internet without even asking if it’s secure.
It doesn’t matter if it’s a camera, tv, modem / router, or any other device, you should always check if it’s secured correctly and then connect it to internet.
someone could get into your camera or modem, and from there could hack your computer / laptop etc… steal your bank information.
Always check :

1. do you need to connect the device to internet ? if no, then don’t
2. If it must be connected, make sure it has a good username password, make sure that all default accounts are deleted or at least edit them one by one and change the passwords. add new accounts with strong passwords.
3. if the device must be accessible from outside, then make sure it’s secured, you could use VPN, many routers modems have it built in, if you don’t have it, at least use a not standard port, not 80 or 8080, but something that’s not widely used.
4. most devices that connect to internet have an option to set the remote IP address, so that not everyone can connect, use that if its possible in your case.
5. If you have no IT experience and knowledge on higher level, hire professional to do it for you, it might cost little extra but it will prevent a bigger disaster in future.

We wish you much luck and pleasure with the technology, and hope you’ll stay secure 🙂