skilledtothegills@lemmy.world to

Technology@lemmy.worldEnglish · 1 month ago

Linksys Velop routers send Wi-Fi passwords in plaintext to US servers

642

Linksys Velop routers send Wi-Fi passwords in plaintext to US servers

skilledtothegills@lemmy.world to

Technology@lemmy.worldEnglish · 1 month ago

According to Testaankoop, the Belgian equivalent of the Consumers' Association, two types of Linksys routers are sending Wi-Fi login details in plaintext

During installation, the router sent several data packets to an Amazon server in the US. These packets contained the configured SSID name and password in clear text, as well as some identification tokens for this network within a broader database and an access token for a user session that could potentially enable a MITM attack.

Linksys has refused to acknowledge/respond to the issue.

Chat

Natanael
link
fedilink
English
arrow-up
2·
1 month ago
If you get root on the device you can MITM it by extracting session keys

Technology@lemmy.world

technology@lemmy.world

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@lemmy.world

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

4.03K users / day
10.9K users / week
18.3K users / month
38.6K users / 6 months
95 local subscribers
57.1K subscribers
10.5K Posts
474K Comments
Modlog