Home / Early Warning / Cybersecurity Highlights / Owari botnet control server uses default login credentials

Owari botnet control server uses default login credentials

06/04/2018

Ankit Anubhav, researcher on security firm IoT NewSky Security, has discovered that Owari botnet uses default login credentials to access to Command & Control (C&C) botnet sever. This botnet is managed by a MySQL database with “root:root” credential.

The access to the database allows to everybody could manage the botnet and access to all info obtained, for example: info about affected devices, attacks manager, duration, max number of available bots and intervals between attacks.