|
|
|
|
|
|
by Macuyiko
797 days ago
|
|
|
Wow, this brought back memories. I could swear I wrote a blog post about this years ago but couldn't find it. A quick search on the local file system revealed `vnccrawl/crawler.py` from 2016 [1] using what looks like a Shodan data dump and calling out to `vncviewer.exe`. I remember randomly logging into some instances and also seeing a lot of cool random systems, including a lot of them controlling industrial systems. Guess I never ended up writing that post. One would think that on today's Internet it would take only a couple of seconds for those to get compromised, but obfuscation as security, perhaps? [1]: A random tip from that file: Using a password of 12345678 gives access to way more 'weakly secure' instances. |
|
|