- Keetics underwent a data leak in 2023, but the pirate said that the data had been destroyed and not shared
- However, Cybernews researchers recently received a sample database
- Almost a million Russian households are in danger, experts say the experts
Information on expected router users, originally stolen in March 2023 and thought they had been deleted at the time, surfaced online, which potentially puts a million households at significant risks.
In a security notification published on the company’s website, Keetics said that an independent IT researcher had contacted mid-March 2023 to warn unauthorized access to the mobile application database.
“After checking the nature and credibility of the risk, we immediately resolved the afternoon issue of March 15, 2023,” said the company. It was then told Keetics that the data had not been shared with anyone and was then destroyed. However, it now seems that this was not really the case, because the researchers in security Cyberness have recently shown samples via an anonymous tip.
Names, emails and clear passwords
Cyberness Said that the number of records on display includes more than a million emails, names, localities, KEYCLOK identity management system and network control identifiers and telegram code identifiers.
In addition, there were 929,501 disclosed recordings containing SSIA and WiFi passwords in raw text, device models, standard numbers, interfaces, Mac addresses, domain names for external access, encryption keys and much more.
Then there were 558,371 configuration recordings of the device such as user access details, vulnerable MD-5 chopped passwords, attributed IP addresses and extended router settings.
Finally, complete service newspapers containing more than 53,869,785 recordings have also been disclosed, including host names, Mac addresses, IP, access details and even “owner_is_pirate” flags.
Most exposed users seem to be Russian (943,927), with 39,472 victims being English users and 48,384 Turkish language users.
After learning the leak, Keetics users recommended users who registered before March 16, 2023, to modify passwords from the user account of their device, WiFi passwords and VPN-CLIENT / KEYS PRE-PRE-PRE-PRE-PARTAGE for PPTP / L2TP, L2TP / IPSEC, IPSEC site, SSTP.
Via Cyberness
