Two years ago, something very strange happened to me while working from my home network. I was exploiting a blind XXE vulnerability that required an external HTTP server to smuggle out files, so I spun up an AWS box and ran a simple Python webserver to receive the traffic from the vulnerable server.
This article is a great example why you should use your own router instead of ISP provided one
Why should I allow you to control my hardware when you can’t protect yourself
Correction, they can protect themselves, but they chose not to devote the time, money and effort it would take to make sure they’re secure. They just slap it together asap, say good enough, and start charging millions of dollars for customers to use it
Here in France you can technically be fined for not securing properly your wifi. It was put in place by something called HADOPI which tries to catch movies shared on torrents. Unsurprisingly, the lobby of record labels managed to even make sure you couldn’t pretend someone hacked your wifi and downloaded illegally. But I’m sure the same bill but applied to businesses wouldn’t ever pass.
Businesses could leak all your sensitive data and they won’t get anything beside bad PR but a single french citizen not proficient enough to secure his wifi may get in trouble.
Correction, they can protect themselves, but they chose not to devote the time, money and effort it would take to make sure they’re secure. They just slap it together asap, say good enough, and start charging millions of dollars for customers to use it
There should be laws and fines for this.
Here in France you can technically be fined for not securing properly your wifi. It was put in place by something called HADOPI which tries to catch movies shared on torrents. Unsurprisingly, the lobby of record labels managed to even make sure you couldn’t pretend someone hacked your wifi and downloaded illegally. But I’m sure the same bill but applied to businesses wouldn’t ever pass.
Businesses could leak all your sensitive data and they won’t get anything beside bad PR but a single french citizen not proficient enough to secure his wifi may get in trouble.
Man… kinda jealous.
Look up the equifax breach - basically all us Americans got from that was “lol sorry”