A cybercriminal has published a list of Telnet credentials on a popular hacking forum that contains more than 515,000 credentials for servers, home routers, and IoT smart devices. Telnet is an insecure remote access protocol that allows the administration of the devices over the internet. Information sent using the Telnet protocol is not encrypted, including passwords sent to log in to the device. Many devices ship with insecure default passwords, configured to accept Telnet connections without the device owner’s knowledge. According to experts and the leaker himself, the list was compiled by scanning the Internet for devices that expose their Telnet port and then trying to access them by using the default password or easy to guess password combinations.
With all the news around COVID-19/Coronavirus, the average person is turning to the internet for