Wednesday, June 2, 2010

Unifi ‘backdoor’ allows hacking, spying




Published by The Malaysian Insider, by Lee Wei Lian.

KUALA LUMPUR, June 2 — Over 1,000 UniFi customers are exposed to a potential security risk of attacks from hackers and spying when using the high speed broadband service from Telekom Malaysia.

The security risk comes from a second administration account on routers that UniFi customers have to use.

The routers have the option for remote management enabled and customers were not informed and therefore unable to reset the password.

Security consultant Dinesh Nair, who has seen the second administration account, said that it appeared to be for maintenance purposes and allows Telekom Malaysia to troubleshoot UniFi problems remotely.

But he added that the password was “guessable” and with the remote management option turned on, it left the router vulnerable to unauthorised access and abuse such as forcing dropped connections and listening to the setting up of email passwords.

“It’s a security risk,” said Dinesh

“Telekom Malaysia should have been open about it from day one. The potential for damage is there.”

He said that the remote management option should have been turned off by default and turned on only when Telekom Malaysia needed remote access.

He added that it was particularly critical for business Unifi customers as competitors could try and gain unauthorised access to company IT systems via the remote management option.

“It’s a foot in the door,” he said.

When contacted, Telekom Malaysia said that they will discuss the issue with their technical team and issue a response.

One broadband industry executive said that the severity of the risk depended on the permissions that were granted to the remote access user.

“Can they reset the box? Or is it just to monitor usage?” said the executive.

“But the risk is greater for business users than home users as it could pose a security breach.”

UniFi user KC Lau said he was upset after reading about the issue on a techie forum (http://forum.lowyat.net/topic/1439287 ) and recalled how his technician told him not to change the passwords on even his WiFi router so that Telekom Malaysia technicians could have remote access.

“Why can’t we change the password on our own WiFi router?” he said.

As of May 7, there were about 1,700 UniFi customers.

Telekom’s UniFi service is part of its High Speed Broadband (HSBB) project was initiated in 2008 and is initially be available in fourareas around the Klang Valley: Shah Alam, Subang Jaya, Taman Tun Dr Ismail and Bangsar. It will be expanded to another 22 areas by June and a further 22 by December.

By 2012, TM expects to hit 1.2 million premises passed.


1 comment:

  1. http://www.themalaysianinsider.com/malaysia/article/tm-agrees-to-change-unifi-access-settings/

    KUALA LUMPUR, June 2 — Broadband provider Telekom Malaysia Berhad (TM) tonight agreed to change remote access settings to its new UniFi high-speed broadband service that carries potential security risks to more than 1,000 customers.

    ReplyDelete