Nearly 13,500 iSCSI storage clusters are without authentication

More than 3,500 iSCSI storage clusters on the internet are left without any password protection. This was detected by a PenTester, who goes under the name 'A Shadow.'

Internet Small Computer Systems Interface (iSCSI) is a protocol used for linking workstations and servers to data storage devices such as disk arrays and NAS devices.When left unprotected, these iSCSI storage clusters may lead to unauthorized access to disk arrays and NAS devices.

Legitimate files could possibly be replaced with malware by attackers. They can also insert backdoors inside backups, or steal any sensitive information stored on the unprotected storage devices.

A Shadow, the pentester who detected over 13500 unprotected iSCSI storage clusters, analyzed the leaky storage devices and found out that these clusters belong to private companies.A Shadow also stated that this may leave a ‘dangerous backdoor’ that could allow attackers to plant ransomware-infected files on companies’ networks, steal company data, or drop backdoors inside backup archives.