• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Some Linksys routers send login credentials to US based server in plaintext

Joined
Jan 5, 2006
Messages
18,347 (2.71/day)
System Name AlderLake / Laptop
Processor Intel i7 12700K P-Cores @ 5Ghz / Intel i3 7100U
Motherboard Gigabyte Z690 Aorus Master / HP 83A3 (U3E1)
Cooling Noctua NH-U12A 2 fans + Thermal Grizzly Kryonaut Extreme + 5 case fans / Fan
Memory 32GB DDR5 Corsair Dominator Platinum RGB 6000MT/s CL36 / 8GB DDR4 HyperX CL13
Video Card(s) MSI RTX 2070 Super Gaming X Trio / Intel HD620
Storage Samsung 980 Pro 1TB + 970 Evo 500GB + 850 Pro 512GB + 860 Evo 1TB x2 / Samsung 256GB M.2 SSD
Display(s) 23.8" Dell S2417DG 165Hz G-Sync 1440p / 14" 1080p IPS Glossy
Case Be quiet! Silent Base 600 - Window / HP Pavilion
Audio Device(s) Panasonic SA-PMX94 / Realtek onboard + B&O speaker system / Harman Kardon Go + Play / Logitech G533
Power Supply Seasonic Focus Plus Gold 750W / Powerbrick
Mouse Logitech MX Anywhere 2 Laser wireless / Logitech M330 wireless
Keyboard RAPOO E9270P Black 5GHz wireless / HP backlit
Software Windows 11 / Windows 10
Benchmark Scores Cinebench R23 (Single Core) 1936 @ stock Cinebench R23 (Multi Core) 23006 @ stock
Testaankoop: Some Linksys routers send login credentials to US based server in plaintext

According to the Belgian consumer organization Testaankoop, the Velop Pro WiFi 6E and 7 mesh routers from the Linksys brand have been experiencing security problems for more than six months.
The routers would send plaintext login credentials to a server in the US during installation.

According to Testaankoop, this concerns the Linksys Velop Pro WiFi 6E, the MX6201-KE and MX6203-KE versions, and the Linksys Velop Pro 7.
According to the consumer organization, both mesh router systems send 'the configured SSID name and password' in plaintext during the installation process. to an Amazon server in the US.
They would also send identification tokens and a user session access token, which would enable a man-in-the-middle attack. In such an attack, the connection between the router and a server is intercepted, which could result in data being stolen.

Testaankoop claims to have informed Linksys about the vulnerability several times: for the first time in November 2023 and recently after the release of a firmware update.
Despite the reports, the problem is not solved, even after the firmware update.


 
Last edited:

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
40,678 (6.54/day)
Location
Republic of Texas (True Patriot)
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
Co-pilot/recall anyone? Cisco should be ashamed, blow this up on youtube, cisco/linksys social media pages
 
Joined
Nov 4, 2005
Messages
11,812 (1.73/day)
System Name Compy 386
Processor 7800X3D
Motherboard Asus
Cooling Air for now.....
Memory 64 GB DDR5 6400Mhz
Video Card(s) 7900XTX 310 Merc
Storage Samsung 990 2TB, 2 SP 2TB SSDs, 24TB Enterprise drives
Display(s) 55" Samsung 4K HDR
Audio Device(s) ATI HDMI
Mouse Logitech MX518
Keyboard Razer
Software A lot.
Benchmark Scores Its fast. Enough.
This isn't a overlooked flaw, this was intentional.

1) The SSID and Password, and session tokens are sent to a specific Amazon server
2) Sent in plain text, so unless the device/chipset stores this information as plaintext in memory it had to be decrypted.

Sounds like devices are being used to snoop on customers, I wonder (NSA and five eyes) who could be responsible. Although made in China......
 
Joined
Jun 3, 2008
Messages
551 (0.09/day)
Location
Pacific Coast
System Name Z77 Rev. 1
Processor Intel Core i7 3770K
Motherboard ASRock Z77 Extreme4
Cooling Water Cooling
Memory 2x G.Skill F3-2400C10D-16GTX
Video Card(s) EVGA GTX 1080
Storage Samsung 850 Pro
Display(s) Samsung 28" UE590 UHD
Case Silverstone TJ07
Audio Device(s) Onboard
Power Supply Seasonic PRIME 600W Titanium
Mouse EVGA TORQ X10
Keyboard Leopold Tenkeyless
Software Windows 10 Pro 64-bit
Benchmark Scores 3DMark Time Spy: 7695
This isn't a overlooked flaw, this was intentional.
Agreed. There's no reason for it. They could have at least encrypted it with their secret key or something. Wouldn't make it any safer for who they sell it to, but at least it would restrict access to people in the middle who weren't intended to get the info for free.
 

bug

Joined
May 22, 2015
Messages
13,446 (4.02/day)
Processor Intel i5-12600k
Motherboard Asus H670 TUF
Cooling Arctic Freezer 34
Memory 2x16GB DDR4 3600 G.Skill Ripjaws V
Video Card(s) EVGA GTX 1060 SC
Storage 500GB Samsung 970 EVO, 500GB Samsung 850 EVO, 1TB Crucial MX300 and 2TB Crucial MX500
Display(s) Dell U3219Q + HP ZR24w
Case Raijintek Thetis
Audio Device(s) Audioquest Dragonfly Red :D
Power Supply Seasonic 620W M12
Mouse Logitech G502 Proteus Core
Keyboard G.Skill KM780R
Software Arch Linux + Win10
I mean, what good are credentials you just keep them to yourself?
 
Joined
Aug 20, 2007
Messages
20,985 (3.40/day)
System Name Pioneer
Processor Ryzen R9 7950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
Co-pilot/recall anyone? Cisco should be ashamed, blow this up on youtube, cisco/linksys social media pages
Cisco hasn't had any involvement with Linksys for over a decade man.

It's presently owned by Foxconn.
 

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
40,678 (6.54/day)
Location
Republic of Texas (True Patriot)
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
Cisco hasn't had any involvement with Linksys for over a decade man.

It's presently owned by Foxconn.
Yeah haven't used linksys in nearly 2 decades when they were bought by cisco and the abysmal performing wrt-54gs rev 5 routers in the mid 2000s.

Foxxconn...

The same company people were trying to commit suicide from, the primary CRAPple oem
 
Joined
May 13, 2010
Messages
5,855 (1.13/day)
System Name RemixedBeast-NX
Processor Intel Xeon E5-2690 @ 2.9Ghz (8C/16T)
Motherboard Dell Inc. 08HPGT (CPU 1)
Cooling Dell Standard
Memory 24GB ECC
Video Card(s) Gigabyte Nvidia RTX2060 6GB
Storage 2TB Samsung 860 EVO SSD//2TB WD Black HDD
Display(s) Samsung SyncMaster P2350 23in @ 1920x1080 + Dell E2013H 20 in @1600x900
Case Dell Precision T3600 Chassis
Audio Device(s) Beyerdynamic DT770 Pro 80 // Fiio E7 Amp/DAC
Power Supply 630w Dell T3600 PSU
Mouse Logitech G700s/G502
Keyboard Logitech K740
Software Linux Mint 20
Benchmark Scores Network: APs: Cisco Meraki MR32, Ubiquiti Unifi AP-AC-LR and Lite Router/Sw:Meraki MX64 MS220-8P
Testaankoop: Some Linksys routers send login credentials to US based server in plaintext

According to the Belgian consumer organization Testaankoop, the Velop Pro WiFi 6E and 7 mesh routers from the Linksys brand have been experiencing security problems for more than six months.
The routers would send plaintext login credentials to a server in the US during installation.

According to Testaankoop, this concerns the Linksys Velop Pro WiFi 6E, the MX6201-KE and MX6203-KE versions, and the Linksys Velop Pro 7.
According to the consumer organization, both mesh router systems send 'the configured SSID name and password' in plaintext during the installation process. to an Amazon server in the US.
They would also send identification tokens and a user session access token, which would enable a man-in-the-middle attack. In such an attack, the connection between the router and a server is intercepted, which could result in data being stolen.

Testaankoop claims to have informed Linksys about the vulnerability several times: for the first time in November 2023 and recently after the release of a firmware update.
Despite the reports, the problem is not solved, even after the firmware update.


BTW Linksys is one of the least receptive companies to deal with. I beta tested for them (I'm way past NDA date so I am able to post this) and they handled the last beta program I was in with them badly.Kept closing threads after people tried to help fellow testers, and then deleting the other people's replies and barely providing new firmware for testers and overall being crap so this kinda thing does not suprise me.

and get this the only firmware update we had was 1 day before they closed the test!
 
Joined
Apr 18, 2019
Messages
2,206 (1.15/day)
Location
Olympia, WA
System Name Sleepy Painter
Processor AMD Ryzen 5 3600
Motherboard Asus TuF Gaming X570-PLUS/WIFI
Cooling FSP Windale 6 - Passive
Memory 2x16GB F4-3600C16-16GVKC @ 16-19-21-36-58-1T
Video Card(s) MSI RX580 8GB
Storage 2x Samsung PM963 960GB nVME RAID0, Crucial BX500 1TB SATA, WD Blue 3D 2TB SATA
Display(s) Microboard 32" Curved 1080P 144hz VA w/ Freesync
Case NZXT Gamma Classic Black
Audio Device(s) Asus Xonar D1
Power Supply Rosewill 1KW on 240V@60hz
Mouse Logitech MX518 Legend
Keyboard Red Dragon K552
Software Windows 10 Enterprise 2019 LTSC 1809 17763.1757
Cisco hasn't had any involvement with Linksys for over a decade man.

It's presently owned by Foxconn.
Shame. Regardless of Foxconn's associated-controversies, I've always viewed them as a 'quality' ODM/OEM provider.

Given the current scenario in world (political-technological) affairs, I'd point the finger @ Foxconn's own motivations and/or CCP.
 
Joined
May 13, 2010
Messages
5,855 (1.13/day)
System Name RemixedBeast-NX
Processor Intel Xeon E5-2690 @ 2.9Ghz (8C/16T)
Motherboard Dell Inc. 08HPGT (CPU 1)
Cooling Dell Standard
Memory 24GB ECC
Video Card(s) Gigabyte Nvidia RTX2060 6GB
Storage 2TB Samsung 860 EVO SSD//2TB WD Black HDD
Display(s) Samsung SyncMaster P2350 23in @ 1920x1080 + Dell E2013H 20 in @1600x900
Case Dell Precision T3600 Chassis
Audio Device(s) Beyerdynamic DT770 Pro 80 // Fiio E7 Amp/DAC
Power Supply 630w Dell T3600 PSU
Mouse Logitech G700s/G502
Keyboard Logitech K740
Software Linux Mint 20
Benchmark Scores Network: APs: Cisco Meraki MR32, Ubiquiti Unifi AP-AC-LR and Lite Router/Sw:Meraki MX64 MS220-8P
Shame. Regardless of Foxconn's associated-controversies, I've always viewed them as a 'quality' ODM/OEM provider.

Given the current scenario in world (political-technological) affairs, I'd point the finger @ Foxconn's own motivations and/or CCP.
when I tested for them they were owned by belkin
 

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
40,678 (6.54/day)
Location
Republic of Texas (True Patriot)
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
Joined
Aug 20, 2007
Messages
20,985 (3.40/day)
System Name Pioneer
Processor Ryzen R9 7950X
Motherboard GIGABYTE Aorus Elite X670 AX
Cooling Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory 64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s) XFX RX 7900 XTX Speedster Merc 310
Storage Intel 905p Optane 960GB boot, +2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s) 55" LG 55" B9 OLED 4K Display
Case Thermaltake Core X31
Audio Device(s) TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply FSP Hydro Ti Pro 850W
Mouse Logitech G305 Lightspeed Wireless
Keyboard WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software Gentoo Linux x64 / Windows 11 Enterprise IoT 2024
Top