https://techcrunch.com/2019/01/21/shodan-safari/
By Zack Whittaker
TechCrunch
January 21, 2019
If you leave something on the internet long enough, someone will hack it.
The reality is that many device manufacturers make it far too easy by using
default passwords that are widely documented, allowing anyone to log in as
"admin" and snoop around. Often, there’s no password at all.
Enter "Shodan Safari," a popular part-game, part-expression of catharsis, where
hackers tweet and share their worst finds on Shodan, a search engine for
exposed devices and databases popular with security researchers. Almost
anything that connects to the internet gets scraped and tagged in Shodan's vast
search engine -- including what the device does and internet ports are open,
which helps Shodan understand what the device is. If a particular port is open,
it could be a webcam. If certain header comes back, it's backend might be
viewable in the browser.
Think of Shodan Safari as internet dumpster diving.
From cameras to routers, hospital CT scanners to airport explosive
detector units, you’d be amazed -- and depressed -- at what you can find
exposed on the open internet.
[...]
--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_
