Vickery after finding the breached data quickly contacted the company and the company quickly closed off all the public access to their server and also thanked Vickery publicly! Here is a statement from the company: OmniRat Allows Cyber Criminals Hack Mac, Linux, Windows PC and Android Phonesįirmware Worm Permanently Infects Macs in Seconds “But there’s a lot of stuff that should definitely not be out there, and when I come across those I try to notify the owner of the affected database,” according to Krebs on Security. “There are a lot of interesting, educating and intriguing things that you can find on Shodan,” Vickery said. Vickery’s request turned up four internet addresses which were later identified to be belonging to Kromtech the company who made Mackeeper. Ports are basically a doorway to a server and each port governs a number of web applications and services like MongoDB (a popular database management system) are associated with the port 27017.
Vickery was looking to find servers that are listening to incoming connections on port 27101. He found 21 GB of data from the breach while finding database servers that don’t require any authentication and are open to external connections.
His name is Chris Vickery, a 31 year who works at MackeeperIT helpdesk in the day and a security researcher by night. The most interesting part of this breach is that the guy who reported this breach doesn’t even have a Mac and found this on Shodan which is a search engine that indexes everything connected to the internet.
#Mackeeper exposed for mac os x
ShortRead: MacKeeper, a utility software suite for Mac OS X faced a data breach which has exposed details in relation to its 13 million customers.
0 kommentar(er)
