Building society caught in middle of high street sharing a little too much on TeamViewer There is a cautionary tale in today's edition of finest bork as a digital sign does exactly as instructed, but perhaps not quite as intended. It is the turn of the Cambridge Building Society to flash its undergarments at passersby this time around. Register reader Adam snapped the outfit's St Andrew's Street branch in the …
Saw a payment terminal at a once-popular chalet based holiday establishment with something comparable. After reporting it to staff they called the terminal support group and an hour later Notepad was open and showing the text "Please reboot me now."
I had to remind my friend that although yes, he could use the touch screen and the open Notepad to "learn more about the system" as he put it, he works in a senior technical position at a major UK bank and really shouldn't be leaving himself vulnerable to an accusation of hacking.
His protests ended when I pointed out the ceiling based camera recording his actions.
Its difficult to resist as we're a curious lot in IT. Nowhere near a bank but in a lodge on IOW, I've snooped round in the loft and found their, quite decent switch that they use for each lodge. Good job I did as one of the bedroom TVs wasn't working. And turned out to be a loose cable in the switch, wasn't clicked into place. They correctly disabled all ports on the switch that weren't in use and the WiFi for each lodge had isolation on. The only shit part was their bullshit advertising of fast internet. It was far from it, it was worse than dialup.
Another site, the whole park was wide open. From the lodge you could get to the main router that control all the other 6 or 7 lodges. The password was left as the default. You could even connect to the printer in their office. Was at Christmas. I was very tempted to send a print but didn't.
Another place with a few lodges spaced a good distance apart also had issues. But the couple that run it are nice so I reported the issues via email. And gave them free IT advice or what to do to fix the issues (I guess thats why I have no money, giving advice for free instead of becoming a bullshitting consultant)
Way to miss the point.
Teamviewer did not show typed/saved passwords.
It shows (only to you) the credentials to be used to provide to someone else so they can connect to you.
Naturally, they did not (and can not) plan for some pillock taking a screenshot of that to the entire bloody world
Well they could make it reveal for just a few minutes by clicking on it, if you wanted to see it again after that you have to click on it again.
The bank's BOFH should have every remote PC saved in the TV account for passwordless access anyway (if the bank's paying for it).
(I didn't downvote.)
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
