Stories
Slash Boxes
Comments

SoylentNews is people

BrickerBot Dev Claims Cyber-Attack that Affected Over 60,000 Indian Modems

posted by martyb on Wednesday August 02 2017, @06:51PM   Printer-friendly
from the routed-routers dept.
Security

Fnord666 writes:

The author of the BrickerBot malware has claimed a cyber-attack that took place in various Indian states and has caused over 60,000 modems and routers to lose Internet connectivity.

The incident affected modems and routers belonging to Bharat Sanchar Nigam Limited (BSNL) and Mahanagar Telephone Nigam Limited (MTNL), two Indian state-owned telecommunications service providers.

From Tuesday, July 25 and up to Saturday, July 29, users reported losing Internet connectivity as routers and modems became stuck with their red LED remaining always on.

BSNL told local press that malware caused the downtime. Besides customers routers, the malware also affected routers part of BSNL's National Internet Backbone (NIB), but these were immediately recovered.

An employee of BSNL's technical team told Deccan Chronicle that the incident caused modems in northeast, north and south Indian states to lose connectivity. According to The Hindu, the downtime was prolonged until Saturday because BSNL employees were also on strike.

BSNL estimated that 60,000 modems lost connectivity, affecting 45% of all their broadband connections. MTNL did not provide any numbers.

Source: https://www.bleepingcomputer.com/news/security/brickerbot-dev-claims-cyber-attack-that-affected-over-60-000-indian-modems/

Original Submission

This discussion has been archived. No new comments can be posted.
BrickerBot Dev Claims Cyber-Attack that Affected Over 60,000 Indian Modems | Log In/Create an Account | Top | 8 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
(1)

  • (Score: -1, Troll) by Anonymous Coward on Wednesday August 02 2017, @06:56PM (4 children)

    by Anonymous Coward on Wednesday August 02 2017, @06:56PM (#548055)

    who cares

    • (Score: 0) by Anonymous Coward on Wednesday August 02 2017, @07:02PM (1 child)

      by Anonymous Coward on Wednesday August 02 2017, @07:02PM (#548058)

      Telemarketers/scammers from India care.

      • (Score: 2) by kaszz on Wednesday August 02 2017, @07:04PM

        by kaszz (4211) on Wednesday August 02 2017, @07:04PM (#548061) Journal

        Is there any way to direct the BrickerBot(s) to an IP of interest? ;-)

        Such that the originating IP from which the "remote assistance" is made from gets the BrickerBot thing?

    • (Score: 0) by Anonymous Coward on Thursday August 03 2017, @01:14AM (1 child)

      by Anonymous Coward on Thursday August 03 2017, @01:14AM (#548186)

      People say "who cares" until a huge botnet of compromised devices is used to hack their bank, their pension organization, their hospital or any number of organizations that hold their private information. That's why it matters.

      • (Score: 2) by Nuke on Thursday August 03 2017, @08:38AM

        by Nuke (3162) on Thursday August 03 2017, @08:38AM (#548265)

        People say "who cares" until a huge botnet of compromised devices is used to hack their bank

        Read TFA. Their modems were bricked. End of problem.

  • (Score: 2) by kaszz on Wednesday August 02 2017, @07:07PM (1 child)

    by kaszz (4211) on Wednesday August 02 2017, @07:07PM (#548062) Journal

    Is there any list of equipment vulnerable to the BrickerBot?

    • (Score: 2) by frojack on Wednesday August 02 2017, @09:24PM

      by frojack (1554) on Wednesday August 02 2017, @09:24PM (#548123) Journal

      Is there any list of equipment vulnerable to the BrickerBot?

      Not sure that matters, since TFA said:

      BSNL said the malware attacked modems where users hadn't changed the default password (admin/admin), and later asked over 2,000 users to change their device's default credentials.

      On Sunday, BSNL principal general manager K. Ramachand said the malware affected 90% of all newly installed modems but declined to give out a precise number. He also confirmed the malware had attacked only modems that still used their default password.

      That's just batshit stupid.
      Even Comcast is smart enough to not leave each modem set to factory defaults.

      --
      No, you are mistaken. I've always had this sig.

  • (Score: 4, Funny) by Nuke on Wednesday August 02 2017, @09:17PM

    by Nuke (3162) on Wednesday August 02 2017, @09:17PM (#548119)

    I wondered why the guys from "Windows" stopped calling me about my viruses.

(1)