Inb4 Americans pointing out I pronounce 'router' the British way 😂

600K routers from a single ISP- yea, it's a disgruntle network employee.

Definitely sounds like a former employee. Windstream is one of the worst places to work.

Good guy hacker finds vulnerability and bricks routers, thus saving customers from being hacked.

Those poor rooters.

I often forget routers are just mini computers

Use to be a windstream customer and i can see why a hacker would hate them. Worse isp i ever had

It’s scary how bad these routers are at security.

And yet 99% of ISPs are absolute assholes when I tell them I want to build and manage my own router.

As a windstream customer, I wasnt affected, but they gave me a Nokia router (WHO GENUINELY KNEW NOKIA MADE ROUTERS) but uhh yeah

Bob was also the first politician in the country to listen to and stand with the public against the Restriction on the use of Cash bill (Cash ban bill).

This video makes me very happy I run Opnsense on an old thin client, instead of any commercial consumer router.

NGL, the designer for the europol op did nice work

05:45 - You seem to have missed the rather obvious double meaning of "think about your next move" -- They deliberately make the (y) of "your" be both there and not there. it's a double meaning: Think about OUR next move and think about YOUR next move. The clear threat of "if you don't do anything, we will. We're giving you this chance to do the right thing before the hammer comes down"

Am i the only one thinking that the Europol video is one of those TTS ticktocks that just spam content?

There's one problem with the 'Operation Endgame'. TOR. Many of the cybercriminals use TOR to either use it as a C2, or as a comms method. So, with a perfect OPSEC, it's difficult to find people to disrupt operations just by the info alone. Because the OPSEC is perfect, which in most situations is never the case. So, you'll need some kind of LE backdoor into the TOR client or Linux component to just catch people off guard, but at the same time, this allows LE to just watch what you're doing on TOR or on your computer which defeats the purpose of TOR in the first place. So, the only reliable methods to catch criminals are vulnerable software and OPSEC mistakes. And that's the problem when it comes to this kind of thing. Problem could be is that either the server is a honey pot, or the person that makes the 'OPSEC mistake' is not the person that is making the mistake. And TOR conceals that. There's a lot of problems to deal with, for example proximity issues, bullet-proof hosting, impersonation(where the cybercriminal is impersonating some other group to mislead the investigation), etc.

Canada has been using that exact model for over 15 years so I would 100% expect alot of Canadian ISPS to be oblivious to this as well

1:00 "dead rooters" 😂

The only way to update firmware on that many cable modems is to modify the TFTP server internally behind the cable head-ends. This had to be done by somebody inside of the NOC (Network Operations Center). All the modems have a unique MAC address attached to the coax PHY. That MAC address is used to request a BIN file from the TFTP server inside the NOC. This is a standard and it is secure.

Rooter! I haven’t heard someone say that in years lol

A "gaming" router? Now I've heard everything. Some people really will waste their money on anything.

Bro knew I just sat down for dinner.

That Sagemcom F5380 was such a bulletproof router being deployed by another major ISP in the US. Before they began the phase out process in the late 2010s. But even after that. Technicians would deploy those routers in people’s homes in the 2020’s when the new stuff wasn’t working. Or they ran out of the newer router. Real shame.

I used to work at a much larger providers NOC. I specialized in both data and transport (SONET). There were some routes we would lease from Windstream. I could call them up and tell them their shit was down before they knew their shit was down. Then I would follow up every fing day demanding escalations, explanations, estimations. The incompetence at Windstream is mind numbing. Implying sabotage is generous. Incompetence is the cause. Level 3 was no better. Call those clowns up... Hey I see all these routes down WTF is going on over there? Oh yeah we had a power outage. Ok... why didn't the generator pick it up? Well it ran out of fuel. Really? How long have you been without power? Little over an hour....

The routers might have been a test run to see what happens. Do it in a small town. You see how total the destruction is without making waves, plus you can see if it can be traced to the source.

Ive brick many a device in my days... but this unknown got me beat.

Ooph! If the archer C5400x is considered old.... some of the networking hardware I have online must be downright ancient!

Gaming router?? Can it run Doom?😀

2$ CAT7 cable > 200+$ gaming wifi brick

*I wonder why Russia is not "fire-walled" and blocked by the USA and Europe? The FBI already knows the ISP addresses of all the VPN companies so they can easily be blocked too! In fact the best reason not to use a VPN is that those ISP's are KW'd "Keyword Watched" by all government agencies the heaviest (Arousing suspension is usually a criminals first and last mistake.)

8:11 I don't know why but that ";" really made laugh harder than it should've 😂

that sound effect at 6:09-6:10 is terrifying to SS13 players holy. the feds probably scared me more than they did their intended target

FBI trolling hackers is the least wasted tax payer money I have seen. It makes me laugh, so worth it :P

Now they’re properly rooted

bro was doing a bit of trolling with the routers

How do I buy a season pass for Operation Endgame?

I have some theory on the how they bricked a bunch of ISP branded routers. These routers run custom firmware which these days includes a way to receive 'OTA' Firmware updates and remote configuration from the ISP. This is a backdoor for hackers sadly, but could also add to the disgruntled former employee theory. I recall a similar incident with TalkTalk in the UK a few years ago, a teenager some how got access to a bunch of customer's routers and made a big mess. My guess if it's not an employee, poor security at the ISP end that enabled access to a bunch of these devices via a management subnet on the network or a config server.

The company better offer replacements or refunds for the routers, If I was affected and my ISP didn't give a replacement or refund I would RAGE

Lol i remember when bricker bot was a thing, just a qbot that went aroound bricking devices.

Hell yeah! About time someone goes against hackers. I don't know why you sound disappointed hackers can't ruin the lives of everyday ppl. At least SOMEONE is actually trying

I left the moment you said "rooter"

The ISP mainly have farmers as customers who use the IOT to control everything now

Cable provider wasn’t property keeping their router fleet maintained. Hope state regulators forced them to credit clients and forced them to update routers.

Just a wild guess. Many people are just not motivated or knowledgeable enough to change the default admin password on their routers.

Randomly bricking hundreds of thousand routers is such a strong statement towards the ISP that has to replace them. Millions of dollars of damage for those shitty companies.

Maybe europol should spend more time investigating and prosecuting then hyping up their operations like it was some ad campaign

bro said rOOOOOOOOter

If no one is claiming credit, then it's either a single person, such as a disgruntled, former employee, or it's a state actor.

I think its not outside the realm of possibility that the router hacks were an undisclosed action from the US government. Maybe there were potential vulnerabilities and enough sensitive Windstream customers that justified the action. And if it doesn't come back to them, why not ? People with dead routers going to get new ones, new ones less vulnerable?

You actually need to thank this hacker destroying your vulnerable equipment. You atleast will get forced to fix your privacy leak. Keep telling you dont have anything to hide.. wait ten years and you will regret if the damage isnt done already.

Yep probably a disgruntled ex-employee that used the TR-069 remote management protocol (yes, a lot of ISPs have remote access to your router) and pushed some new malicious firmware to a bunch of devices while they still knew the creds on the ISP end, once they found out they were being laid off 🤔

Easiest way in: through the ISP So yeah, an inside job by disgruntled employee(s) is a very likely cause If they push a "modified" firmware as an update, it's done

Here in Europe (specifically in Italy) we have a law that forces ISP to gives credentials for authentication to use a 3rd party router,can't imagine happening to myself (other than me messing with it)

Ah yes, the final brick on my list, they beat me it. Fine, I'll speed run the bricking of the newest device that comes to the market.

@5:41 C2 server is located where? Courious...

basically all routers “Made in China” have back door and can be hacked.

Season 2: this is Even. Do you know even? Where is even right now? Does even work with odd? I can't even

If the router hack was by a former ISP employee, it may have something to do with TR69.

the routers were probably being actively used to perform ddos attacks. someone got tired of it and bricked the routers so they can no longer be used for ddos attacks.

They should hand over all firmware code to the police for an investigation. They could be infiltrated by criminals who want to exploit the company.

Does anyone know if the C5400X is the same router as the AX11000? They look the same

The public back and forth is for the public to see and believe their safety is being secured lol.

That sounds nasty. It does sound like it should be repairable though, as long as someone takes the time to figure out what it actually did to the insides of it. Generally router and firewall boxes are just SBC's (single board computers) set up to perform specific function. I remember I had a firewall setup on a Linux server we used as a office gateway to the Internet, but various others kept saying we didn't have a firewall. The company CEO then went behind my back and got (very expensive) contractors to install a little firewall box. It made me laugh afterwards, because the firewall appliance they installed contained a little SBC that ran Linux.

Rooters!! 😂

From Routers to Nueters.

Who had to suck up the loss of 600K routers? the ISP or the individual clients?

Rooters lol gotta love accents brother😂💯😭

the endgame thing could be soft recruitment for potential double agents

Well hopefully when those customers get new modems they will be new models that are patched for the exploit.

I mean…. ISP have access to your device at home which is why i dont use it without my own router, and not only that their device isnt any better than my existing device so theres no reason to use it

sad day for those rooters! 😭

Bricking a ton of rooters sorta just feels rude but I also can't get mad at a fired worker getting back at their former employer.

Maybe some customers who had bad experience with isp service.

Seems like a perfect setup for starlink to not get paid for the work that was put in, for rural internet across the US. Just a thought.

Its everywhere 🌊💧

man, i miss when malware was made to just cause an inconvenience or to troll people, rather than for monetary gain

editors fs had a laugh making europols videos as a cutter myself I can defenitely see why they used that stock footage I would die laughing making that

No coverage of the ShinyHunters Santander breach...

It was employee. Poor rooters

Well, I guess if I'm still here, my router didn't get hit. (This is sarcasm.)

They should make 100 episodes where they lost, but I guess we have a certain podcast for that

your the best man! i hate reading and your content does it for me 🔥🔥

6:40 well that was super cringe lol

Eth went out last night for a couple hours.

Might want to make sure the Sream doesn't have anything to gain by doing it to themselves.

my wifi also went offline a few days ago. i assume this is why. my router isn’t bricked thankfully

Still better than the actual Endgame movie

This was done BY the ISP so that they could get more money. 500k x $50 = 25mil

How much money to replace all infected devices?

Rooters are the root of all evil. Use a Router instead! 😂

Rache Bartmoss would approve

I wonder why they were bricked outright, usually exploits have a purpose

I think the operation endgame stuff is funny 🙂

Plot twist: it was a disgruntled windstream customer XD

They probably werent a specific target for a hate crime or anyone being angry with them, but more rather they probably operate a few DDoS for hire or botnet spots like people whi do qbot abd mirai variants where devices or attacks are sold

dang those Roooooooter... Best hacking news account!

I believe the hacker tried to backdoor these routers and accidentally bricked them in the process

6:07 - sounds like they used a kurzgesagt ai voice clone

A moment to The guys with the broken router who are unable to even find out what happened by watching this vid

"rooters" lol