How a bad wi-fi router flaw led to a perfect example of responsible disclosure
Tens of thousands of long-range WiFi routers used to provide home wireless broadband, especially in remote or rural areas, are riddled with vulnerabilities that could let a hacker take over IT networks, security researchers said Tuesday. The vulnerabilities, some of which can be exploited remotely if the router’s management interface is directly connected to the internet, were discovered in Cambium Networks’ ePMP and cnPilot product lines by independent researcher Karn Ganeshen earlier this year. Although Cambium has made patches available, as many as 36,000 of the devices appear visible on the internet. Ganeshan approached cybersecurity firm Rapid7 to coordinate disclosure with Cambium in September, Rapid7 Director of Research Tod Beardsley told CyberScoop. “He had a great big pile of vulnerabilities,” Beardsley said. “A lot of them were variations on a theme. We triaged them out … and when we figured out what we had, there were really 11 of them, […]
The post How a bad wi-fi router flaw led to a perfect example of responsible disclosure appeared first on Cyberscoop.
Continue reading How a bad wi-fi router flaw led to a perfect example of responsible disclosure