VNCFail by Aeris

, par  Genma , popularité : 2%

VNC is a graphical desktop sharing system that uses the Remote Frame Buffer protocol (RFB) to remotely control another computer. It transmits the keyboard and mouse events from one computer to another, relaying the graphical screen updates back in the other direction, over a network.

If this system is reachable from anyone from the Internet, then someone can see the display with a VNC client software, or take remote control of this machine. If this machine is a machine containing critical data, personal, management software of a cash machine in a store ... it can be problematic if the person is malicious.

Letting an open public remote access (which is often done by a company which develops a software and takes control in order to do some helpdesk for example)) is a major security breach.

In order to expose this, Aeris has set up a "bot" (an automated program) which has scanned a grand number of IP public address connected to Internet, checking if a VNC port was opened on these machines. For each VNC server publicly exposed on the Internet, a screenshot is taken. Then he publishes some of them on Twitter, under the hashtag #VNCFail, adding a small humorous comment.

His purpose is, I insist, to raise awareness by showing the type of data, screens, software, systems that are accessible to everyone which is a little curious and knowing how to do a scan on an IP range.

Aeris is clearly in raising awareness and altruism. When he felt on screens (on machines) showing sensitive data, he took contact with the appropriate French authorities (One could find software management of a boiler where the change of setting would lead to an industrial accident).

To follow this, see #VNCFail on Twitter