#default-credentials
#default-credentials

[ follow ]

Bankrupt scooter startup's single key controlled everything

A closer look at the Android app and Bluetooth traffic showed that locking, unlocking, and basic status checks all occur locally over Bluetooth, with the cloud mostly along for the ride. Before accepting commands, the scooter runs a simple authentication check: it sends a short challenge, the app replies with a cryptographic response, and access is granted. It's designed to stop random passers-by from hopping on and riding off. In theory, at least.

Information security

fromThe Hacker News

2 weeks ago

GoBruteforcer Botnet Targets Crypto Project Databases by Exploiting Weak Credentials

GoBruteforcer compromises crypto and blockchain project servers to build a botnet that brute-forces FTP, MySQL, PostgreSQL, and phpMyAdmin credentials.

Information security

fromSecuritymagazine

4 months ago

Security Leaders Discuss Restaurant Brands International's Vulnerabilities

RBI systems exposed drive‑through audio and employee data due to basic security failures like hardcoded/default credentials.

[ Load more ]

#default-credentials#default-credentials

Bankrupt scooter startup's single key controlled everything

GoBruteforcer Botnet Targets Crypto Project Databases by Exploiting Weak Credentials

Security Leaders Discuss Restaurant Brands International's Vulnerabilities

#default-credentials
#default-credentials