Yeah, this was super rough. I regret giving this as a talk because there just wasn’t enough content. Read the blog post instead, save 30 minutes, and you won’t have to listen to me say “like” 5,000 times 😄

Gotta love this guy. Amazing talk.

Interesting talk, shed some light on remote modem management. I didn't know about TR 069. Thanks!

Am I going crazy or was there a similar talk regarding the whole HTTP replaying in a local network thing?!

This is a bigger problem than a lot of people even realize.....

That modem is the same exact modem Comcast used to use. I think Comcast is on to the XB3 now and that one was the XB2, or something like that.

3:44 when you're a good enough hacker to appreciate a run-of-the-mill botnet lol

Bro out here lowkey warning us of remote managed modems/ioTs. Now, him not just taking the modem and telling the ISP he lost it is just low level social and the fact we have no physical device that is directly affected places into question whether there was ever a modem to begin. Used to spend time on DOCSIS modems, exploits for modems see to not have changed much. For DOCSIS 1, 2 and even 3, SNMP was the backdoor and now the same goes for TR-069. So remote management means exactly that, anyone remotely can and will manage the device, in this case, the actual pipeline to the cloud.

Over this talk he said 4967 words, 413 of them were the word "like" which is 8.31% of his entire speech. It`s, like, crazy

Wtf I did not recognize Sam Curry, he's now a grown up, haha.

So how would we protect against a modem attack

gr8 talk and research!

Same thing back in the 80's a British Telecom auditor found that MI5 had their own backdoor into every exchange in the country. For some reason an exchange operator tipped him off about lots of calls to French Guiana... and when he found the breach the top-dog at B.T. got told by his boss to sweep it under the rug etc.

People here complaining about his use of “like” but he is too busy talking at DEFCON and hacking things you don’t even comprehend. So STFU.

Excellent.

Is anyone out there who’s not making and shipping hilariously vulnerable critical devices or a playa now gotta run a syslog server and a SIEM for his crib ? 😂😂

what's the website showing ip history at 3:05?

Arcadyan routers infecting all devices via wifi ?

I live in Norway and rooted my isp's router, and see its sending all kind of encrypted data to some server in usa too . i am not a fan.. anyone knows what the name of the attack he used to mix the routers mac and different values to break into the isp's other customers routers was ? I imagine i can do the same up here in Norway if i have ,, a easy bash script generating the values, calculating the payload,, sending it off with some bash script even. There was some research done on this years ago regarding breaking the wifi password of peoples router if you had the mac address, this is another topic maybe but, still it might be exactly the same code that will calculate my encrypted string to send off with a bash script to enumerate my neighbors networks ? I got a old router that i tricked out of my isp , they'r new routers are much harder to root and control like the guy the video talks about when he gets questions from isp lady in end of video. I am hardly allowed to change wifi password without explicitly asking my isp to do so, and i can forget about custom firewall rules. I am "forced" to sit on my old vulnerable router from 1995 if i want to have my own firewall rules. All just so my dear isp's have a backdoor channel in for state authority's to snoop they'r data.

Like.

How do you like working with cox... lmao

This topic woukd be more interesting if the speaker could "like" actually deliver a presentation and be cool...right. just like it could be better. Things like that would improve audience engagement.

this is like a joke right? I am just falling in this rabbit hole. but this exact story i heard yesterday but different. Is this like a weird cult coder copa pasta meme? How I accidently made a botnet..

recorded whole talk using Samsung s24u and summarized, there is 3451 times LIKE said...

half the runtime is "like" please work on removing filler words, for the sake of the sanity of your surrounding

Hard to listen for long when it's "like" all the time 😂😂

It hasn't been DefCon for 20 years. Call it USGovCon because that's who attends it.

But modems have been vulnerable for years. It seems nobody also changes their default pw, which is also a problem.

can someone eli5. thank you

Right?

Like Like Like So like Like Like Like

people are complaining about his use of "like", but, like, he needed some way to stretch this out to 25 minutes.

Damn, like, that’s pretty cool & I’ve liked always wanted to know how to do something like this cause like all my emails are full of spam & like all my social medias send me like attempt to login texts/emails. It’s super like fucking annoying. And if I could like just learn how to like figure out like who/how they’re doing it so I could like return the favor, I’d like make this my full time focus and then like create a business out of it to like hack & spam for everyone else who like deals with the same like problem, right. So, right like if anyone like knows how to do this right & could teach me, right, like I’d be willing to like pay, right. So, like, feel free to reach out like right. Right?