The Trend Micro researchers said yesterday at the official website shows, the Chinese manufacturers produce a series of routers contain a severe vulnerability, the hacker through the loopholes in monitoring user's Internet traffic. Router in China the Brand Name Netcore in foreign countries the Brand Name Netis is.
The researchers wrote in an article, the Netcore series router presence of a backdoor, into the back door password is“hard encryption”(hardcoded)is written to the firmware of the device, and all passwords seem to be all the same. An attacker can easily use this password to log in to the router, and the user cannot change or disable this Backdoor.
The Brand of the router open UDP Port 5 3 4 1 3, the Trend Micro online scans this Port to find more than 2 0 0 million IP addresses, meaning that may contain this vulnerability the device number. These devices the vast majority in China, including but not limited to, South Korea, Taiwan, Israel and the United States.
Through this Backdoor, an attacker can upload or download files to the device, but also the implementation of“middleman”attacks. Meanwhile, Trend Micro also in the router find one is not an encrypted file, the file is the router Web Management User name and password. The attacker can be from the router to download the file.
Trend Micro has been notified is located in Shenzhen, China producers, but did not get a response.