He stole the docs by compromising a router that was running the FTP protocol.
That shouldn’t even be a thing happening in this decade! The default password barely enters into it. Vendor leaves giant foot gun. Customer blows foot off.
I've noticed that in Enterprise environments, it's very common that people don't change default settings. I think it's because in a team, you don't care as much. It's not your own stuff, and you sometimes don't feel like you have the authority to change things like default passwords. Someone could be using that password, you could be breaking some app etc. Easier to ignore it.
I think I read somewhere that it's a lot harder to hack home networks than enterprise systems, which makes very much sense to me.
Home networks have only a single point of failure. Enterprise systems have multiple points of failure, some of which are unknown because the people who were the "failures" have left the company for decades.
7 comments
[ 2.5 ms ] story [ 32.7 ms ] threadThat shouldn’t even be a thing happening in this decade! The default password barely enters into it. Vendor leaves giant foot gun. Customer blows foot off.
I think I read somewhere that it's a lot harder to hack home networks than enterprise systems, which makes very much sense to me.
I think this is misleading, because the reason for this hack is not technical issue. The strongest passwd is useless if it's transparent like this.
I can understand that shipping with no passwd included is also somewhat awkward or perhaps even not allowed by regulation