New
#1
Fortunately this does not effect Super Hub 3.
Virgin Media tells 800,000 customers to change passwords after routers found vulnerable to hackers
Virgin Media tells 800,000 customers to change passwords after routers found vulnerable to hackers | ZDNetVirgin Media has warned 800,000 customers using its Super Hub 2 router to change their passwords because a security vulnerability could expose their passwords to hackers, enabling attackers to gain control of other smart devices on the network.
The company says that the risk of compromise is only minimal, but customers who haven't changed the default password displayed on a sticker attached to the router to change both that and their network password in order to protect against potential attacks.
Virgin has advised Super Hub 2 users to switch to a "unique" password which should contain at least 12 characters using a mix of upper and lower case letters and numbers.
The ZDNet article refers to the Which? investigation that discovered this, but failed to give a link. The problem is that although Virgin gave each Hub 2 a unique default password it's a....
Which? - Virgin urges Super Hub 2 password change...relatively weak default password – only eight characters long, using just lowercase letters from an A-Z alphabet, with two letters removed...
Using publicly available hacking tools that can be found on the web, we were able to crack the router password in just a few days. We were also able to log in to the router’s configuration page, since the default password for doing so is shared across all Super Hub 2 devices....
... While it took mere days for us to crack the Super Hub 2 password, using the same approach it would take 262m years to breach the Hub 3.