[Scan-DC] KiwiSDR developer had backdoor root access
Chris Smolinski
csmolinski at blackcatsystems.com
Tue Jul 20 16:54:44 EDT 2021
This article has additional information: https://www.rtl-sdr.com/the-kiwisdr-backdoor-situation/
While in hindsight not a good idea, the backdoor was public knowledge for many years, there were posts about it on the KiwiSDR forum. Version 1.461 of the KiwiSDR software removes it.
Chris Smolinski, W3HFU
Black Cat Systems
Westminster, MD USA
https://www.blackcatsystems.com
> On Jul 20, 2021, at 1:51 PM, Andrew Clegg <andrew_w_clegg at hotmail.com> wrote:
>
> For years, a backdoor in popular KiwiSDR product gave root to project developer
> Users are rattled after learning their devices and networks were exposed.
>
>
> https://arstechnica.com/gadgets/2021/07/for-years-a-backdoor-in-popular-kiwisdr-product-gave-root-to-project-developer/
>
>
> [https://cdn.arstechnica.net/wp-content/uploads/2021/07/kiwisdr-760x380.jpg]<https://arstechnica.com/gadgets/2021/07/for-years-a-backdoor-in-popular-kiwisdr-product-gave-root-to-project-developer/>
> For years, a backdoor in popular KiwiSDR product gave root to project developer | Ars Technica<https://arstechnica.com/gadgets/2021/07/for-years-a-backdoor-in-popular-kiwisdr-product-gave-root-to-project-developer/>
> Enlarge / A spectrum painted image made using KiwiSDR. xssfox KiwiSDR is hardware that uses a software-defined radio to monitor transmissions in a local area and stream them over the Internet. A ...
> arstechnica.com
>
> ______________________________________________________________
> Scan-DC mailing list
> Home: http://mailman.qth.net/mailman/listinfo/scan-dc
> Help: http://mailman.qth.net/mmfaq.htm
> Post: mailto:Scan-DC at mailman.qth.net
>
> This list hosted by: http://www.qsl.net
> Please help support this email list: http://www.qsl.net/donate.html
More information about the Scan-DC
mailing list