Now for the “dark side”… Huawei routers have serious security flaws…

By on October 11, 2012 9:42:59 AM from JoeUser Forums JoeUser Forums

DrJBHL

Join Date 04/2002
+2160

 

Felix (FX) Lindner, a well known super hacker (for the white hats), has revealed at “Hack In The Box” that Huawei’s routers have so many security holes that using the hack he discovered (which requires physical connection) for the ‘static’ password is trivial. He won a cash prize for it.

"I don't know if there are backdoors - but it doesn't matter since there are so many vulnerabilities." – Felix Lindner

These were revealed by him at Defcon in July.

The really bad news? Huawei is the second largest Telcom in the world.

“This Monday Congress issued a report raising concerns about national security in relation to Huawei's suspected role in using technology to help the Chinese government expand its overseas spying operations.

The House Intelligence Committee released the findings Monday and has urged U.S. companies doing business with Huawei to use another vendor.”

The response from Huawei?

“William Plummer, Huawei vice president of external affairs, has warned of reprisals from foreign governments in response to the House panel’s conclusions. Blocking Huawei from doing business in the United States would set a "monstrous, market-distorting, trade-distorting policy precedent that could be used in other markets against American companies,” he has said.” - http://www.nextgov.com/cybersecurity/2012/10/chinas-defense-huawei-us-tech-companies-spy-too/58680/

Maybe the next ‘shortage’ will appear in U.S. equipment using Chinese manufactured parts (Cisco beware!).

On the upside, maybe outsourcing has finally showed its Achille’s heel.

It should have been “We’ll change our software security.”

“Needless to say, what Lindner has revealed at Hack In The Box today is a serious issue for all users of Huawei products.” - http://www.zdnet.com/hack-in-the-box-researcher-reveals-ease-of-huawei-router-access-7000005600/?s_cid=e539

 

Source:

http://www.zdnet.com/hack-in-the-box-researcher-reveals-ease-of-huawei-router-access-7000005600/?s_cid=e539

http://www.nextgov.com/cybersecurity/2012/10/chinas-defense-huawei-us-tech-companies-spy-too/58680/

10 Replies
Search this post
Subscription Options


Reason for Karma (Optional)
Successfully updated karma reason!
October 11, 2012 9:44:30 AM from WinCustomize Forums WinCustomize Forums

Never even heard of that brand, but thanks for the info.

 

Reason for Karma (Optional)
Successfully updated karma reason!
October 11, 2012 10:11:47 AM from WinCustomize Forums WinCustomize Forums

Reason for Karma (Optional)
Successfully updated karma reason!
October 11, 2012 11:28:16 AM from Sins of a Solar Empire Forums Sins of a Solar Empire Forums

Quoting Island Dog,
Never even heard of that brand

They also make cheap cellphones, my wife had one through T-Mobile...Wow, when you thank about it, it's the perfect rival to the NSA (National Security Agency)...

Reason for Karma (Optional)
Successfully updated karma reason!
Sign Up or Login and this ad disappears!
There are many great features available to you once you register. Sign Up for a free account and browse the forums without ads.
October 11, 2012 4:18:11 PM from Elemental Forums Elemental Forums

obviously, the committee has never heard of all those windows backdoors from nsa.

or all those ithingys or other electronics being made in china for pittance and then sold at inflated prices everywhere.

Reason for Karma (Optional)
Successfully updated karma reason!
October 12, 2012 1:18:54 AM from WinCustomize Forums WinCustomize Forums

Quoting alaknebs,
all those ithingys or other electronics being made in china for pittance and then sold at inflated prices everywhere.

Yeah, it stinks, don't it!  Companies shifting their manufacturing operations offshore to exploit low paid workers and cheap resources, yet selling their products as though they were manufactured onshore at 10 times the cost.  Apple is notorious for this - exploiting dirt cheap manufacturing costs while extracting premium prices across all markets for its products.  It's deplorable that Apple [and others] do this, exploiting the lowest paid workers, and it shits me immeasurably that none of this exploitative cost cutting can be passed on to the consumer.  No, it's all counted as profit while its exponential greed continues unabated, and why I've boycotted Apple products. 

Put bluntly, I refuse to give my patronage to corporate thugs/bullies.

 

*rant off*

Reason for Karma (Optional)
Successfully updated karma reason!
October 12, 2012 1:40:11 PM from GUIChamps Forums GUIChamps Forums

Quoting starkers,

Quoting alaknebs, reply 4 all those ithingys or other electronics being made in china for pittance and then sold at inflated prices everywhere.

Yeah, it stinks, don't it!  Companies shifting their manufacturing operations offshore to exploit low paid workers and cheap resources, yet selling their products as though they were manufactured onshore at 10 times the cost.  Apple is notorious for this - exploiting dirt cheap manufacturing costs while extracting premium prices across all markets for its products.  It's deplorable that Apple [and others] do this, exploiting the lowest paid workers, and it shits me immeasurably that none of this exploitative cost cutting can be passed on to the consumer.  No, it's all counted as profit while its exponential greed continues unabated, and why I've boycotted Apple products. 

Put bluntly, I refuse to give my patronage to corporate thugs/bullies.

 

*rant off*

 

I second that opinion!

Reason for Karma (Optional)
Successfully updated karma reason!
October 12, 2012 10:00:07 PM from Stardock Forums Stardock Forums

Quoting Island Dog,
Never even heard of that brand, but thanks for the info.

 

 

You probably use their products already though.

Reason for Karma (Optional)
Successfully updated karma reason!
October 13, 2012 4:05:14 AM from WinCustomize Forums WinCustomize Forums

Quoting coreimpulse,
You probably use their products already though.

Yes, apart from its own devices Huawei makes components for for dozens of electronics companies in the business of communications.  Yeah, I saw that on a current affairs show that did an expose on Huawei after the Australian Government barred the company from participating in the National Broadband Network roll-out over concerns of spying.

Personally, I think our politicians were worried Huawei would find out just how much porn they download, but that's another story.

Reason for Karma (Optional)
Successfully updated karma reason!
October 18, 2012 6:23:34 PM from Sins of a Solar Empire Forums Sins of a Solar Empire Forums

Quoting starkers,

Quoting alaknebs, reply 4 all those ithingys or other electronics being made in china for pittance and then sold at inflated prices everywhere.

Yeah, it stinks, don't it!  Companies shifting their manufacturing operations offshore to exploit low paid workers and cheap resources, yet selling their products as though they were manufactured onshore at 10 times the cost.  Apple is notorious for this - exploiting dirt cheap manufacturing costs while extracting premium prices across all markets for its products.  It's deplorable that Apple [and others] do this, exploiting the lowest paid workers, and it shits me immeasurably that none of this exploitative cost cutting can be passed on to the consumer.  No, it's all counted as profit while its exponential greed continues unabated, and why I've boycotted Apple products. 

Put bluntly, I refuse to give my patronage to corporate thugs/bullies.

 

*rant off*

But Apple had Steve Jobs, so it's okay. 

-Lord Brony

Reason for Karma (Optional)
Successfully updated karma reason!
October 19, 2012 2:01:06 AM from Sins of a Solar Empire Forums Sins of a Solar Empire Forums

 

As to tec being vulnerable to being hacked, what about all the backdoors in Windows that every update has to close many, many of them. 

or

White House Hacked In Cyber Attack That Used Spear-Phishing To Crack Unclassified Network

Cisco Web Site Hacked, Exposing User Passwords

Why is it that we constantly hear of systems being compromised, but there is never any mention of what company supplied the system that 'has so many vulnerabilities', only the 'security' people failing at plugging all the holes. 


EDIT: If you really want to see spying, take a look at a company that many countries outsource the spying of their own citizens.

Comverse Infosys

Comverse Infosys, Inc., based in Woodbury, New York, is a world leader in the development, manufacture and marketing of award-winning digital recording and monitoring systems with multiple applications for law enforcement agencies, telecom network providers, contact centers, and government agencies. The company’s products are installed in global telecommunication networks, financial institutions, customer service centers, telemarketing centers, and other contact centers worldwide.

 http://cryptome.info/0001/verint-spysys.htm


What is to stop these guys from sharing information they collect on Americans to other 'evil' nations? Because we have all seen how honorable corporations are.


Edit2: Here is the Hack in the Box Magazine PDF from April. Tons of security issues, but I guess none are the competition to American Corporations, so no Big Show, nothing to see here people, move along.

http://magazine.hackinthebox.org/issues/HITB-Ezine-Issue-008.pdf

Reason for Karma (Optional)
Successfully updated karma reason!
Stardock Forums v1.0.0.0    #108431  walnut1   Server Load Time: 00:00:00.0000469   Page Render Time:

Home | About | Privacy | Upload Guidelines | Terms of Service | Help
WinCustomize © 2014 Stardock Corporation. All Rights Reserved.