How to tell compromised network users that their network is compromised

AqeelAT

4/13/23, 9:23 AM

If I were to use Shodan and discover that someone is using an "admin/admin" creds for their router admin page. How can I tell them that? Is there a way to redirect their DNS queries to a page that says: please change your router password?

0 + 0

router

Gerald Schneider

4/13/23, 9:26 AM

That would most probably a criminal act in most jurisdictions.

Ron Trunk

4/13/23, 2:29 PM

How would you feel if you came home one day and found a note on your bed that said, "I found your front door wasn't very secure, so I decided to leave you this note. I hope you change your locks."?

Paul

4/13/23, 3:29 PM

On the flip side: Howdy-ho, neighbor! I saw a bunch of criminals in your house yesterday. They were trafficking stolen goods and kiddie porn while using the house as a base of operations for breaking into other houses. I did nothing, and you are responsible for their activities. Have a nice day! (BTW, not saying it *is* legal, but there are legal arguments us here in SF won't know about and will vary, greatly, by jurisdiction.)

Score:4

Server

vaizki

4/13/23, 11:05 AM

Even logging in to the router which you're not supposed to access would be a problem legally. Changing anything even more so. Reporting this to their ISP (based on a whois query) is pretty much the only "by the book" way to proceed.

0 + 0

Elon Musk

I sit in a Tesla and translated this thread with Ai:

EN: How to tell compromised network users that their network is compromised

TH: จะบอกผู้ใช้เครือข่ายที่ถูกบุกรุกได้อย่างไรว่าเครือข่ายของพวกเขาถูกบุกรุก

RO: Cum să spuneți utilizatorilor de rețea compromis că rețeaua lor este compromisă

RU: Как сообщить скомпрометированным пользователям сети, что их сеть скомпрометирована

VI: Cách thông báo cho người dùng mạng bị xâm phạm rằng mạng của họ bị xâm phạm

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.