Security Market Segment LS
Tuesday, 29 May 2018 09:02

Singtel leaves routers open to attack by mistake


Singapore ISP Singtel opened up port forwarding to troubleshoot issues with some gigabit routers but then forgot to close the opened port after the problem was fixed. Result? Port 10000 was left open for attackers to gain full control of these routers.

NewSky Security research lead Ankit Anubhav, who discovered the open port and dubbed the issue ForgotDoor, said any router which had port 10000 open could be easily accessed and controlled by attackers. A total of 975 routers were observed to be vulnerable.

The password could be changed from the settings menu once one had access, with this being very simple if the default credentials had not been changed.

Anubhav said the routers were connected to multiple devices which meant that these devices too would be open to compromise.

News of the vulnerability was conveyed to CERT Singapore who informed Singtel to fix the issue.

Douglas Mun, deputy director in charge of SingCERT at the Cyber Security Agency of Singapore, was quoted as saying: "The ISP SingTel has disabled port forwarding to port 10000 for the affected routers. Root cause: Port forwarding was enabled by their customer service staff to troubleshoot Wi-Fi issues for their customers and was not disabled when the issues were resolved.

"ISP Singtel will be taking measures to ensure that port forwarding is disabled after troubleshooting has completed."

Anubhav said that one way to cut down on attacks was to let IoT devices connect via non-standard ports.

"For example, setting up SSH on an unusual port can save the device from a lot of brute-force attacks that are designed to attack the default SSH port (which is 22).

"However, this practice should never be considered as a replacement for basic IoT security. With easily available crawling scripts and services like Shodan, it is easy for attackers to find out such unusual ports being used."


Did you know: 1 in 10 mobile services in Australia use an MVNO, as more consumers are turning away from the big 3 providers?

The Australian mobile landscape is changing, and you can take advantage of it.

Any business can grow its brand (and revenue) by adding mobile services to their product range.

From telcos to supermarkets, see who’s found success and learn how they did it in the free report ‘Rise of the MVNOs’.

This free report shows you how to become a successful MVNO:

· Track recent MVNO market trends
· See who’s found success with mobile
· Find out the secret to how they did it
· Learn how to launch your own MVNO service


Sam Varghese

website statistics

Sam Varghese has been writing for iTWire since 2006, a year after the site came into existence. For nearly a decade thereafter, he wrote mostly about free and open source software, based on his own use of this genre of software. Since May 2016, he has been writing across many areas of technology. He has been a journalist for nearly 40 years in India (Indian Express and Deccan Herald), the UAE (Khaleej Times) and Australia (Daily Commercial News (now defunct) and The Age). His personal blog is titled Irregular Expression.



Recent Comments