100s of Russian Building Controllers Can be Remotely Hacked

Researcher Jose Bertin has identified critical security vulnerabilities in a building controller made by Russian firm Tekon Avtomatika (Tekon.ru).

Jose Bertin, an IT security researcher, has identified critical vulnerabilities in Tekon Avtomatika’s building controllers, which, if exploited, can lead to remote hacking of building controllers used by a vast number of Russian organizations.

For your information, Tekon manufactures equipment and software for building systems such as elevators. It mainly produces SCADA devices, including hubs, controllers, and Modbus devices, and owns a significant chunk of the Russian market.

Over 100 Devices Vulnerable to Hacking

Bertin claims to have discovered 100+ internet-connected devices made by Tekon vulnerable to hacking. A Shodan research also indicated more than 100 Tekon controllers, dubbed by the company as engineering equipment controllers, at risk. However, as per Shodan’s results, around 117 vulnerable devices were located in Russia and 3 in Ukraine, as noted by Eduard Kovacs of SecurityWeek.

Latest Shodan results (Image credit: Hackread.com) What is the Issue

According to the researcher, all vulnerable devices are using default credentials. It is worth noting that using default credentials makes IoT devices vulnerable to remote attacks because these allow any user access to the Tekon controller’s user interface

Read More: https://www.hackread.com/100-russian-building-controllers-can-be-remotely-hacked/