"BestBuy" Claims to Have Hacked 32 Million Routers

The hacker who goes by the name of BestBuy apologized for taking out ISP TalkTalk this past weekend with his DDoS attack. He called it a mistake.

Now he is claiming that he has set up a server that will search out vulnerable routers and push firmware updates to them, locking out the owner and the ISP.

“They are ours, even after the reboot. They will not accept any new firmware from [Internet Service Provider] or anyone, and connect back to us every time ,” BestBuy said in an online chat. “Bots that cannot die until u throw the device into the trash.”

BestBuy published a URL that supposedly showed the stats of his enslavement. Researchers who monitored the site saw the number of “accessed” devices grow from 500,000 on Monday morning, to more than 1.3 million a few hours later. He also shared a list of infected routers with their model names and unique IDs.

Researchers are skeptical. To push a firmware update, the hacker would have to patch "firmware for each different model and possibly even for each ISP.”

When asked what he intended to do with all those infected routers, BestBuy replied: “Prolly [sic] get drunk(er).”

Source: Motherboard