Viking GS8100 Router
After my last successful access to a home router I spend some time online finding similar devices. Today I found a Viking GS8100 router with default username/password and of course wide open to everyone.
This is not something new, everyone is expecting that some hopeless home users have their broadband routers on their default installations. But this had a static IP and after a quick whois I found that this belongs to a Costa Rica company who owns a /21 netblock. Well, here is a screenshot from the web interface of that router (blurred IPs for obvious reasons).
And here is the same router from telnet:
It’s kind of hard to believe that companies do not even change their default passwords on publicly accessible network devices. In addition to this, the above router had IP over ATM connection with another similar router from the same netblock which had default settings too!
And here is the second router’s main menu.
Honestly, I have no idea on what to say about this “corporate” network setup. Even the most stupid attacker can own their internal network in a few minutes. Pathetic.. yeah. That’s the word!