Following up on their original threat, and last week’s alleged breach of communication provider Aminia’s backend systems, the R00TK1T ISC Team this morning published a claim that they have gained access to data belonging to Maxis Communications. Based on the screenshots provided, we believe that the information allegedly breached belongs to their Home and Business Fibre Broadband service, and does affect Maxis’s mobile and telephony and mobile data services.
While the screenshots released do not reveal any personally identifiable information of customers, it does reveal model numbers of routers, specifically the Kaon AR2140 router and the Kaon AR1344E mesh router. We can confirm that both these models are indeed provided by Maxis to their Fiber customers. Aside from Maxis, Astro Broadband customers are also supplied with similar routers.
As with many ISP’s these days, both these routers come with remote administration capabilities, which allows ISP support staff to troubleshoot and update the device remotely. Whether this remote administration feature has been exploited by R00TK1T remains to be seen.
We have reached out to Maxis to get their response to the alleged breach, and will update this story as soon as we receive a response.
The post R00TK1T claims to have breached Maxis, threatens to release customer data and expose vulnerabilities appeared first on Lowyat.NET.