Topic: Shockingly poor security - backdoors found in D-Link DWR-932 B LTE router (Read 1865 times)

Weaver · « **on:** September 29, 2016, 08:29:49 PM »

See
http://thehackernews.com/2016/09/hacking-d-link-wireless-router.html

If you own one of these, get your money back or bin it.

NewtronStar · « **Reply #1 on:** September 29, 2016, 08:55:15 PM »

Weaver could you ask this hacker to stop probing my ports they are all closed TCP packet from [ppp1.1] 110.249.208.86:55555 to it's getting annoying everyday they probe this modem.

Weaver · « **Reply #2 on:** September 29, 2016, 10:51:53 PM »

I'll do my best.

roseway · « **Reply #3 on:** September 29, 2016, 11:01:10 PM »

@NS: That IP address is in China:

Code: [Select]

eric@nuthatch:~$ whois 110.249.208.86
% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '110.240.0.0 - 110.255.255.255'

inetnum:        110.240.0.0 - 110.255.255.255
netname:        UNICOM-HE
descr:          China Unicom Hebei province network
descr:          China Unicom
country:        CN
admin-c:        CH1302-AP
tech-c:         KL984-AP
remarks:        service provider
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CNCGROUP
mnt-lower:      MAINT-CNCGROUP-HE
mnt-routes:     MAINT-CNCGROUP-RR
status:         ALLOCATED PORTABLE
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-irt:        IRT-CU-CN
changed:        hm-changed@apnic.net 20090512
source:         APNIC

irt:            IRT-CU-CN
address:        No.21,Jin-Rong Street
address:        Beijing,100140
address:        P.R.China
e-mail:         zhouxm@chinaunicom.cn
abuse-mailbox:  zhouxm@chinaunicom.cn
admin-c:        CH1302-AP
tech-c:         CH1302-AP
auth:           # Filtered
mnt-by:         MAINT-CNCGROUP
changed:        zhouxm@chinaunicom.cn 20101110
changed:        hm-changed@apnic.net 20101116
source:         APNIC

person:         ChinaUnicom Hostmaster
nic-hdl:        CH1302-AP
e-mail:         abuse@cnc-noc.net
address:        No.21,Jin-Rong Street
address:        Beijing,100033
address:        P.R.China
phone:          +86-10-66259764
fax-no:         +86-10-66259764
country:        CN
changed:        abuse@cnc-noc.net 20090408
mnt-by:         MAINT-CNCGROUP
source:         APNIC

person:         Kong Lingfei
nic-hdl:        KL984-AP
e-mail:         konglf5@chinaunicom.cn
address:        45, Guang An Street, Shi Jiazhuang City, HeBei Province,050011,CN
phone:          +86-311-86681601
fax-no:         +86-311-86689210
country:        cn
changed:        konglf5@chinaunicom.cn 20090206
mnt-by:         MAINT-CNCGROUP-HE
source:         APNIC

% Information related to '110.240.0.0/12AS4837'

route:          110.240.0.0/12
descr:          China Unicom Hebei Province Network
country:        CN
origin:         AS4837
mnt-by:         MAINT-CNCGROUP-RR
changed:        abuse@cnc-noc.net 20090522
source:         APNIC

% This query was served by the APNIC Whois Service version 1.69.1-APNICv1r0 (UNDEFINED)

Weaver · « **Reply #4 on:** September 29, 2016, 11:47:32 PM »

China and Brazil are where the most recent probes directed towards me have come from.

News:

Author Topic: Shockingly poor security - backdoors found in D-Link DWR-932 B LTE router (Read 1865 times)

Weaver

Shockingly poor security - backdoors found in D-Link DWR-932 B LTE router

NewtronStar

Re: Shockingly poor security - backdoors found in D-Link DWR-932 B LTE router

Weaver

Re: Shockingly poor security - backdoors found in D-Link DWR-932 B LTE router

roseway

Re: Shockingly poor security - backdoors found in D-Link DWR-932 B LTE router

Weaver

Re: Shockingly poor security - backdoors found in D-Link DWR-932 B LTE router