Routers, switches, home automation vulnerabilities

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › Routers, switches, home automation vulnerabilities

freitasm

BDFL - Memuneh
79298 posts

Uber Geek

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#140742 19-Feb-2014 09:27

Time to stop and read this piece on home automation and LAN devices vulnerabilities. Let the implications sink in...

freitasm

BDFL - Memuneh
79298 posts

Uber Geek

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#990195 19-Feb-2014 10:10

Another example... Synology has released a few days an update to prevent machines being accessed from outside and new packages installed. Basically people were installing Bitcoin miners on Synology boxes - from your little two bay home NAS to big rigs...

Mark

1653 posts

Uber Geek

#990354 19-Feb-2014 12:27

Being able to access your home network and files from remote is a nice thing to have, but people forget to put decent padlocks on to stop other people wandering in!
And most consumers are not technical at all so have no clue what enabling remote access actually opens them up to.

I still think people should have to pass an exam before getting a computer :-)

Disrespective

1926 posts

Uber Geek

#990520 19-Feb-2014 14:56

For what it's worth, I think this is a good guide to setting up a remote desktop environment securely on windows:

http://www.howtogeek.com/175087/how-to-enable-and-secure-remote-desktop-on-windows/

p.s. I hope it's a good guide, it's what i've followed...

Ragnor

8223 posts

Uber Geek

Trusted

#990668 19-Feb-2014 18:13

Disrespective: For what it's worth, I think this is a good guide to setting up a remote desktop environment securely on windows:

http://www.howtogeek.com/175087/how-to-enable-and-secure-remote-desktop-on-windows/

p.s. I hope it's a good guide, it's what i've followed...

Even better only use remote desktop over a VPN

gibbo

30 posts

Geek

#991354 20-Feb-2014 20:03

Yes, appears ports scanners are looking for open RDP ports on routers and firewalls. A number of small businesses in NZ have had workstations and servers hacked and held hostage with disk encryption bombs, including the USB backup drive still attached. The vector in was most likely RDP direct in and not being secured inside a VPN with good authentication. I know of 3 cases in the last 6 months.