"Attackers Using Default Credentials to Target Businesses, Raspberry Pi and Linux Top Targets"
Bulletproof released a cybersecurity report detailing findings from research gathered in 2021. The report highlights that default credentials remain one of the main entry points used by attackers. Research shows attackers are consistently leveraging and gaining access to servers using the same common passwords, some of which are default passwords that have remained the same since being implemented. These passwords include default Raspberry Pi credentials, which is significant as there are over 200,000 machines on the Internet running the standard Raspberry Pi OS. Researchers have also seen attackers attempting to access servers by entering credentials used in Linux machines, further highlighting the key issues that default credentials are still not being changed. Bulletproof's report revealed that 25 percent of passwords used by attackers today come from the RockYou database leak from December 2009, suggesting these passwords remain viable. This article continues to discuss key findings shared in Bulletproof's report regarding attackers' use of default credentials as an entry point to systems.