Here is another argument in favor of encryption without any “back doors”:
In a report published this week, security researchers Pierre Kim and Alexandre Torres said they discovered seven vulnerabilities in the firmware of FTTH OLT devices manufactured by Chinese equipment vendor C-Data.
Kim and Torres said they confirmed the vulnerabilities by analyzing the latest firmware running on two devices, but they believe that the same vulnerabilities impact 27 other FTTH OLT models, as they run similar firmware.
The vulnerabilities are as bad as it gets, but by far, the worst and most disturbing of the seven is the presence of Telnet backdoor accounts hardcoded in the firmware.
Who knows how many companies and organizations can access these backdoors? Obviously, the manufacturer (C-Data) can surreptitiously access it anytime they want but what about credit card thieves, identity thieves, or the Chinese government?
You can read more at https://www.zdnet.com/article/backdoor-accounts-discovered-in-29-ftth-devices-from-chinese-vendor-c-data/
Categories: Encryption, Online Privacy & Security
Leave a Reply