Linked by Thom Holwerda on Mon 22nd Feb 2010 09:57 UTC
Privacy, Security, Encryption Discovered by Czech researchers, the Chuck Norris botnet has been spreading by taking advantage of poorly configured routers and DSL modems. The malware got the Chuck Norris moniker from a programmer's Italian comment in its source code: 'in nome di Chuck Norris', which means 'in the name of Chuck Norris'. Chuck Norris is unusual in that it infects DSL modems and routers rather than PCs. It installs itself on routers and modems by guessing default administrative passwords and taking advantage of the fact that many devices are configured to allow remote access. They're behind the times, though. It should've been the Epic Beard Man Botnet. Move over, Chuck.
Thread beginning with comment 410403
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: Comment by ssa2204
by Earl Colby pottinger on Mon 22nd Feb 2010 19:17 UTC in reply to "Comment by ssa2204"
Earl Colby pottinger
Member since:
2005-07-06

I seen what happens when you do that for the general consumer market.

5% will change it to a good strong password and keep it in their head or a secured place.

10% will change it to the easiest password they can remember (usually their own name, the dog or cat). Very rarely is this a strong password in any sense.

25% will stick a post-it note with the password to the machine (50% of these will lose the post-it note within a year or the next move).

33% Will suffer brain lock and claim they can't read/understand that tech talk. And they will keep on claiming this if they call tech support.

And most of the rest will either pack-up and return the item or wait till their eight(8) year old comes home who will in turn read the manual/screen instructions. However, 8 year olds don't understand security so they don't pick strong passwords either.

Reply Parent Score: 7

RE[2]: Comment by ssa2204
by Quazion on Mon 22nd Feb 2010 23:01 in reply to "RE: Comment by ssa2204"
Quazion Member since:
2007-12-04

I just removed the password on all my home equipment. Typing passwords is just a waste of time.

Reply Parent Score: 2

RE[3]: Comment by ssa2204
by sakeniwefu on Mon 22nd Feb 2010 23:11 in reply to "RE[2]: Comment by ssa2204"
sakeniwefu Member since:
2008-02-26

As long as your system doesn't allow remote logins without password you may actually be safer than with a password.
You should still think about the implications if your devices are stolen, though. The most stupid two characters password is well beyond what any burglar will be able to break. He will format the drive and be done. Without a password he just needs to be able to use a computer at all to recover personal information possibly including on-line banking login data.

Reply Parent Score: 2