This blog is about the misconfiguration issue in the ISP I was using. While working on Shodan, I discovered that ISP has left WiFi modem/router with public IP and default password. Which may lead to the hacking of multiple ISP customers by malicious attackers. I have tried contacting them via Twitter.None of the users were exploited or troubled. Data is masked and used only for POC and reporting purposes.
Credit
There was a login page of the router/modem that will appear at 192.168.1.1 and then I didn’t know the username or password of my router’s console. So being a security engineer I entered admin/admin and I was inside the router. I logged into my router’s admin console (192.168.1.1) and went straight to the page which showed the internet connection (PPPOE). In the WAN status, it was showing the gateway address. Gateway IP address is the IP address of a through which all your internet traffic routes to the outside network. I started scanning but then I saw public IP assigned to my router/modem. I copied and opened it. And I could see the same router console.Then I ..
Support the originator by clicking the read the rest link below.
