this post was submitted on 15 Feb 2024
142 points (98.6% liked)

World News

39023 readers
3068 users here now

A community for discussing events around the World

Rules:

Similarly, if you see posts along these lines, do not engage. Report them, block them, and live a happier life than they do. We see too many slapfights that boil down to "Mom! He's bugging me!" and "I'm not touching you!" Going forward, slapfights will result in removed comments and temp bans to cool off.

We ask that the users report any comment or post that violate the rules, to use critical thinking when reading, posting or commenting. Users that post off-topic spam, advocate violence, have multiple comments or posts removed, weaponize reports or violate the code of conduct will be banned.

All posts and comments will be reviewed on a case-by-case basis. This means that some content that violates the rules may be allowed, while other content that does not violate the rules may be removed. The moderators retain the right to remove any content and ban users.


Lemmy World Partners

News !news@lemmy.world

Politics !politics@lemmy.world

World Politics !globalpolitics@lemmy.world


Recommendations

For Firefox users, there is media bias / propaganda / fact check plugin.

https://addons.mozilla.org/en-US/firefox/addon/media-bias-fact-check/

founded 1 year ago
MODERATORS
 

The F.B.I., working with other countries, disrupted a Russian hacking operation that infiltrated more than 1,000 home and small-business internet routers in the United States and around the world, the Justice Department announced on Thursday.

Russian intelligence, collaborating with cybercriminals, created a botnet, or a network of private computers infected with malicious software, to spy on military and security organizations and private corporations in countries like the United States.

Using a court order, the F.B.I. secretly copied and deleted stolen data and malware from hacked routers. Doing this stopped Russia’s ability to use the routers without affecting how they function, officials said.

The F.B.I. director, Christopher A. Wray, shared details of the operation at an annual security conference in Munich.

Archive

top 6 comments
sorted by: hot top controversial new old
[–] mox@lemmy.sdf.org 27 points 9 months ago (1 children)

The lack of detail in this article makes it rather useless. However, the original press release answers the obvious questions:

It was Ubiquiti (UBNT) routers running EdgeOS, with admin passwords that had not been changed from the default, and the admin interface exposed on internet-facing port(s) at some time in the past.

[–] BedSharkPal@lemmy.ca 18 points 9 months ago (2 children)

It's 2024 and the practice of uniform default admin accounts is still alive and well?

[–] tryitout@infosec.pub 5 points 9 months ago (1 children)

You're right that default credentials should have gone away a decade ago. From my experience with security cameras, default credentials were the norm ~5 years ago and now most prompt you to create a unique password. That industry typically lags slightly in infosec best practices. I would expect routers to require a higher level of security.

[–] ryannathans@aussie.zone 5 points 9 months ago

These are old deprecated devices on old firmware, not new routers

[–] ryannathans@aussie.zone 5 points 9 months ago

No longer the case with ubiquiti products, you'll see these are old deprecated devices, on old firmware

[–] autotldr@lemmings.world 1 points 9 months ago

This is the best summary I could come up with:


The F.B.I., working with other countries, disrupted a Russian hacking operation that infiltrated more than 1,000 home and small-business internet routers in the United States and around the world, the Justice Department announced on Thursday.

The disruption is part of a broader effort to stymie Russia’s cybercampaigns against the United States and its allies, including Ukraine.

The details of the operation come a day after the Biden administration said it told Congress and its European allies that Russia is seeking to create a space-based nuclear weapon to target the U.S. network of satellites.

Speaking in Munich, Mr. Wray said Russia continued to target critical infrastructure, such as underwater cables and industrial control systems, around the world.

“And that’s a particularly worrisome trend because we know that once access is established, a hacker can switch from information gathering to attack quickly and without notice.”

announced it disrupted a similar campaign from China that targeted critical infrastructure, often by infiltrating small businesses, contractors or local government networks.


The original article contains 374 words, the summary contains 165 words. Saved 56%. I'm a bot and I'm open source!