Disclosure Archives - Go Direct -> CompSec Direct

White pages are back!: Aeronet Wireless exposes customer info over SNMP
Gallery
White pages are back!: Aeronet Wireless exposes customer info over SNMP

Disclosure, e-Discovery

White pages are back!: Aeronet Wireless exposes customer info over SNMP

By CompSec Direct|2022-06-15T00:33:52-04:00October 12th, 2018|Categories: Disclosure, e-Discovery|Tags: Data Leak, Disclosure, shodan|

Problem CompSec Direct recently became aware of an information disclosure problem affecting Aeronet Wireless customers in Puerto Rico. In short, querying Shodan.io for Aeronet Wireless and SNMP presents publicly accessible information, such as customer names, IP’s, possible account ID’s and geographic locations. Code Proof https://www.shodan.io/search?query=org%3A%22Aeronet+Wireless%22+port%3A%22161%22 162.246.174.134 161 Linux XXX XXX 2.6.32.27 #2 Tue Dec 5 14:09:43 [...]

Comments Off

Judicial branch of Puerto Rico exposes sensitive court documents
Gallery
Judicial branch of Puerto Rico exposes sensitive court documents

Hacking, Laws, Reports

Judicial branch of Puerto Rico exposes sensitive court documents

By CompSec Direct|2022-06-15T00:43:34-04:00May 31st, 2017|Categories: Hacking, Laws, Reports|Tags: Data Leak, Disclosure, Government, Puerto Rico, Rama Judicial, Research|

Problem CompSec Direct recently became aware of an information disclosure problem with the https://unired.ramajudicial.pr/lawyernotificationauthentication/ application used by the judicial branch of the Puerto Rico government. The application uses a weak sequential ID string that is provided to attorneys and clients in order to view sensitive legal documents. Manipulating the ID string with simple math, similar to the overturned [...]

Comments Off