Ο Revolver και η εφαρμογή VNC: Φανταστείτε ότι έχετε τα κλειδιά του διαδικτύου. Μέσα σε ένα λεπτό θα μπορούσατε να δείτε από τη κονσόλα ενός προγραμματιστή των Windows, μέχρι τα εισερχόμενα email ενός διευθυντή σχολείου, ή τον λογαριασμό ενός προφίλ στο Facebook, the surface work of a receptionist in a pediatrician's office, which is filled with patient names, addresses, dates of birth, and phone numbers.
It's a whole new meaning on the "open" internet, and you certainly wouldn't want to be on the victim side.
Can this be done? Thousands of screenshots have been collected and uploaded to the website called VNC Roulette, proves that everything is possible on the internet.
All the pictures of PCs shown on the website have one thing in common: they are running VNC, an open source software code which allows users to remotely access and control a desktop from anywhere in the world. But if VNC is set up without a password, anyone can scan the internet and access those computers.
A hacker, therefore, began to look at how many unsafe computers are available on the internet. The name he uses on the internet is Revolver and is a gray-hat hacker from Morocco.
"This is deep f ** k," he said in a message Monday. "I have access to sysadmin in boxes, and large machines with sensitive data. There is no security. "
Revolver created a script that switches IP addresses and picks ports when trying to connect to servers using VNC. When the script discovers an available connection that does not require checking ID cards, takes a photo, and forwards to a different IP address.
After thousands of successful links, there are about 23 gigabytes of vulnerable screenshots, and they are posted on the VNC Roulette website.
Revolver quickly realized that there were thousands of desktops - Windows, Mac, and even Linux, and hundreds of images of potentially highly sensitive data from SCADA control systems commonly used in industrial installations.
He explained that uninterrupted access to thousands of desktops is not due to a defect or vulnerability in the design of the VNC application. It is the result of users' absolute indifference to using a basic security setting.
"Once you install a VNC server, a f ** king large message will appear stating that you need to enter a password for your security. And most people do not enter this password, "says the researcher.
Shodan.io, is a search engine for Appliances of the internet of things. It gained notoriety by displaying images from thousands of webcams that use default passwords. Although it has been criticized by some, some others cite it as the "ultimate example" of what can happen to unsecured devices.
A rushed search on the default VNC port (5900 or 5901) will show you hundreds if not thousands of different snapshots that you can map to geo-location.
