Industry News

30,000 Servers May Be Exposed To Hackers

30,000 Servers May Be Exposed To Hackers

30,000 Servers May Be Exposed To HackersA vulnerability in the Baseboard Management Controller (BMC) of Supermicro motherboards leaves 30,000 unpatched servers and their passwords available on the open market, according to researchers.

It seems login passwords are stored in clear and the file containing them is widely available for download by connecting to a specific port. To compromise vulnerable servers, an attacker can scan the port and download the remote login passwords stored in a binary file location called “/PSBlock”.

“I discovered that Supermicro had created the password file PSBlock in plain text and left it open to the world on port 49152,” said a security researcher at CARInet Security Incident Response Team.

The researchers also revealed that more than 3,000 passwords still use the default combination, which makes them easy to guess.

Also, many systems are running older versions of the Linux kernel which can be exploited, for example, to elevate user privileges in shared hosting environments. This could allow a rogue customer to elevate his privileges and seize control of other users’ files or even perform changes to the server itself to subvert it.

About the author

Alexandra GHEORGHE

Alexandra started writing about IT at the dawn of the decade - when an iPad was an eye-injury patch, we were minus Google+ and we all had Jobs. She has since wielded her background in PR and marketing communications to translate binary code to colorful stories that have been known to wear out readers' mouse scrolls. Alexandra is also a social media enthusiast who 'likes' only what she likes and LOLs only when she laughs out loud.