“It’s stunning what can be found with a simple search on Shodan. Countless traffic lights, security cameras, home automation devices and heating systems are connected to the Internet and easy to spot. Shodan searchers have found control systems for a water park, a gas station, a hotel wine cooler and a crematorium. Cybersecurity researchers have even located command and control systems for nuclear power plants and a particle-accelerating cyclotron by using Shodan.
What’s really noteworthy about Shodan’s ability to find all of this — and what makes Shodan so scary — is that very few of those devices have any kind of security built into them. “You can log into just about half of the Internet with a default password,” said HD Moore, chief security officer of Rapid 7, who operates a private version of a Shodan-like database for his own research purposes. “It’s a massive security failure.”" Read more…
RELATED STORY: Hackers take aim at key U.S. infrastructure