A security researcher discovered a series of flaws in Brightbox routers that allowed hackers to gain access by a simple copy and paste operation.
Researcher Scott Helme is an EE customer and carried out the investigation out of interest in computer security. The routers were vulnerable to remote access, wi-fi hijacking and exposure of personal information, among other less serious security flaws. Two months after he had informed EE of the vulnerabilities, an update has been released that fixes some, although not all, of the issues. The danger of exposed login information and remote management is now patched but another serious vulnerability remains unchanged, as well as many smaller issues.
Helme plans to continue his research and has informed EE of the problems he has found
