科技臺
發表文章發起投票回覆
下一頁
英國一名『悶悶地』高中生 一夜間 Hack 全球15萬部連接互聯網 printer 印出怪內容




This Teen Hacked 150,000 Printers to Show How the Internet of Things Is Shit
Feb 9 2017, 5:50am

“It was just a night I was bored to be honest, doing random shit.”

On Saturday, February 4, 2017, a self-described "pissed off high school student" in the United Kingdom sat in front of his computer, listening to Bones and Yung Lean, coding a rootkit, a set of software tools that allows an unauthorized user to control a computer system. He got to thinking about recent news reports about printer hacking and shifted gears, instead building a short program in C.

Within hours, roughly 150,000 internet-connected printers across the world began spitting out ASCII art and messages informing their owners that their machines were "part of a flaming botnet." The hacker signed his work as "Stackoverflowin."

Throughout the evening and into Sunday, people across the web reported finding the mysterious printouts. Many of the affected printers were connected to restaurant POS systems, leaving confused employees to find ASCII robots pouring out of their receipt printers.

全文:
https://motherboard.vice.com/en_us/article/this-teen-hacked-150000-printers-to-show-how-the-internet-of-things-is-shit

Good 11Bad 1
13/02/17 12:50 AM
引用快速引用

本貼文共有 39 個回覆
the Internet of Things Is Shit
O:-)
#113/02/17 12:51 AM
引用快速引用
#adore# #adore#
#213/02/17 12:53 AM
引用快速引用
#313/02/17 12:56 AM
引用快速引用
利害#adore# #adore# #adore#
#413/02/17 12:56 AM
引用快速引用
It is stupid for a printer to have IP.
I simply use USB cable and shut down the wifi on my printer.
#513/02/17 12:58 AM
引用快速引用
#613/02/17 12:58 AM
引用快速引用
There are 6XXXX ports in a computer with IP.
This allows for many motherfucKers to do whatever wanton things they want...
#713/02/17 1:00 AM
引用快速引用
It is stupid for a printer to have IP.
I simply use USB cable and shut down the wifi on my printer.

雖然我唔肯定你正確位置係邊
不過如果冇睇錯
由你ip地址睇你大約係黃大仙果頭
#813/02/17 1:00 AM
引用快速引用
“It was just a night I was bored to be honest, doing random shit.”
#oh#

腸登仔:悶悶地..... 射下核彈先.....求 9 其射.... [shocking]

#913/02/17 1:00 AM
引用快速引用
It is stupid for a printer to have IP.
I simply use USB cable and shut down the wifi on my printer.

雖然我唔肯定你正確位置係邊
不過如果冇睇錯
由你ip地址睇你大約係黃大仙果頭

好撚好笑呀屌你老味
#1013/02/17 1:02 AM
引用快速引用
( 訪問:點做到?用戶點可以保障自己?)

Motherboard: You've said before that you were doing this to call attention to the security flaw—how'd you do it, and how can end users protect themselves?

Stackoverflowin: I did it by sending jobs to printers using the LPD protocol (port 515), IPP (port 631), and raw print jobs on port 9100. Along with this, I used an RCE [remote code execution, an exploit allowing the hacker to run arbitrary code on the target computer] which affected Xerox's web control panels. I could create jobs and use my own PostScript to my liking. People need to take their printer out of the public internet unless it's needed, to be honest. And if it's needed, they should be whitelisting IPs/IP subnets [approving connections from specific IP addresses while blocking all others] or using a VPN to access the local network.
O:-)
#1113/02/17 1:07 AM
引用快速引用
And you automated the process of sending the requests, I take it?
Yes, I created a small program in C to do so.

寫個細小 C program 做到自動 send. #lol#
#1213/02/17 1:09 AM
引用快速引用
Right, that someone's going to mess with your smart fridge and your milk will go bad.

It's got a massive potential for fuck ing up. Most of the devices that are used in attacks are sold by one company but manufactured by another—often by sketchy Chinese developers. No racism intended here. Their code is shocking and there are multiple backdoors in a load of internet enabled devices.
[sosad] [sosad] [sosad]
#1313/02/17 1:13 AM
引用快速引用
Right, that someone's going to mess with your smart fridge and your milk will go bad.

It's got a massive potential for fuck ing up. Most of the devices that are used in attacks are sold by one company but manufactured by another—often by sketchy Chinese developers. No racism intended here. Their code is shocking and there are multiple backdoors in a load of internet enabled devices.
[sosad] [sosad] [sosad]

Wechat, TaoBao, TP-LINK, Huawei, ...
#1413/02/17 1:15 AM
引用快速引用
You signed the name Michael Jensch on some of the printouts, and your Twitter account says you're a 23-year-old researcher in Germany. But you've told others you're a high school student in the UK.
Oh, that's my friend. He kinda asked me to do it. And yeah, I'm from the UK. I'm a high school student. A pissed off high school student who fuck ed his future in computing science.

I doubt it sincerely, since nobody knows who you are anyway.
Nah, just in real life. I did not get the grades I wanted. I guess I'll be doing more of this shit for the rest of my life.
[sosad]
今次頭痕鳥~~~
#1513/02/17 1:17 AM
引用快速引用
It is stupid for a printer to have IP.
I simply use USB cable and shut down the wifi on my printer.

雖然我唔肯定你正確位置係邊
不過如果冇睇錯
由你ip地址睇你大約係黃大仙果頭

好撚好笑呀屌你老味

多謝鳥sir:D :D
#1613/02/17 1:57 AM
引用快速引用
#adore# #adore# #adore#
#1713/02/17 2:08 AM
引用快速引用
叻仔#good#
#1813/02/17 2:40 AM
引用快速引用
It is stupid for a printer to have IP.
I simply use USB cable and shut down the wifi on my printer.

雖然我唔肯定你正確位置係邊
不過如果冇睇錯
由你ip地址睇你大約係黃大仙果頭

好撚好笑呀屌你老味

多謝鳥sir:D :D

你條USB cable連接乜??? ??? ???

#1913/02/17 3:08 AM
引用快速引用
It is stupid for a printer to have IP.
I simply use USB cable and shut down the wifi on my printer.

雖然我唔肯定你正確位置係邊
不過如果冇睇錯
由你ip地址睇你大約係黃大仙果頭

好撚好笑呀屌你老味

多謝鳥sir:D :D

你條USB cable連接乜??? ??? ???

唔係連接佢個腦
應該係 海綿體
#2013/02/17 3:35 AM
引用快速引用
It is stupid for a printer to have IP.
I simply use USB cable and shut down the wifi on my printer.

When your home or office is non-Hong Kong size, usb cable will be like you penis, not long enough to get it done.
#2113/02/17 4:34 AM
引用快速引用
悶悶地就搞到壇咁既野#adore#
#2213/02/17 7:59 AM
引用快速引用
你傻㗎
無嘢做
#2313/02/17 8:06 AM
引用快速引用
你傻㗎
無嘢做

[sosad]
#2413/02/17 8:08 AM
引用快速引用
It is stupid for a printer to have IP.
I simply use USB cable and shut down the wifi on my printer.

When your home or office is non-Hong Kong size, usb cable will be like you penis, not long enough to get it done.

[sosad]
#2513/02/17 8:13 AM
引用快速引用
秒後自動載入第 2
下一頁
發表回覆
請先登入以發表回覆