SG3216 hacked

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

SG3216 hacked

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
SG3216 hacked
SG3216 hacked
2016-12-29 19:40:25
Model :

Hardware Version :

Firmware Version :

ISP :

Hi

My SG3216 switch mysteriously reset itself and was conflicting with my router so I noticed it. I went to login and the password was changed back to the default.

I reconfigured the switch and network was running properly again.

BUT

The firmware was automatically updated !!

I NEVER updated the firmware on this switch. I know it for a fact because I have screenshots of the configuration from 2-4 weeks ago with the copyright 2012 on the login page. It says copyright 2015 now and the firmware is the latest revision for the V1 (hardware version 1) of this switch

Did I get hacked? Or did TP LINK somehow magically update the firmware automatically?

SHould I be worried?

I disconnected the switch and used a basic one for the time being.

THanks
  0      
  0      
#1
Options
6 Reply
Re:SG3216 hacked
2016-12-30 09:48:27
hey Jam, Im not sure if your tplink device is really hacked, can you tell me your current network topology ? maybe I can help you, what's more, I think for this kind of security issue, you had better send an email to tplink support, they will be willing to help you.
  0  
  0  
#2
Options
Re:SG3216 hacked
2016-12-30 23:21:19
I think I may have actually updated the firmware but I cant remember

We had a heatwave the system may have failed and reset- losing its configuration settings

TL SG3216

Does anyone know if this unit reacts like that it overheats?
  0  
  0  
#3
Options
Re:SG3216 hacked
2017-01-03 19:25:41

jamh2016 wrote

I think I may have actually updated the firmware but I cant remember


So you probably did hack it for yourself? :D

Does anyone know if this unit reacts like that it overheats?


If environment temperature raises above 40° Celsius constantly for a long time, this may be harmful to the device. But I never heard that a device resets itself if overheated. Resetting to factory settings is kind of a "normal" operation in the sense that the switch must be intact to do a reset. If it overheats and breaks, you will not be able to reset it anymore.
༺ 0100 1101 0010 10ཏ1 0010 0110 1010 1110 ༻
  0  
  0  
#4
Options
Re:SG3216 hacked
2017-01-04 02:54:11

R1D2 wrote

So you probably did hack it for yourself? :D



If environment temperature raises above 40° Celsius constantly for a long time, this may be harmful to the device. But I never heard that a device resets itself if overheated. Resetting to factory settings is kind of a "normal" operation in the sense that the switch must be intact to do a reset. If it overheats and breaks, you will not be able to reset it anymore.


I'm certain I updated the switch I found download links to the update in my web history.


I took the device offline. I ran wireshark against the machines in my network (using port mirroring on my router) and didn't find anything out of the ordinary. I checked my ISP data use logs for past 120 days and nothing out of the ordinary there either.

I dont know why it just reset itself out of nowhere. I was hot that in AUSTRALIA that day and it's sandwiched in a rack with other router. Anyway I employed an old non-smart non-gigabit switch for now.
  0  
  0  
#5
Options
Re:SG3216 hacked
2017-01-04 06:35:40

jamh2016 wrote

I dont know why it just reset itself out of nowhere. I was hot that in AUSTRALIA that day and it's sandwiched in a rack with other router. Anyway I employed an old non-smart non-gigabit switch for now.


Maybe there was a very short power outage at the power plant as it happens sometimes during storms or very hot days. I have an Unix system with big capacitors in the power supply, which notes every minor glitch on the power lines and logs them. Gear with smaller power supplies such as switches and routers sometimes do a power-cycle at such occasions, but if the outage is short enough, the Unix box keeps running and I'll get noticed about it. Just an idea what could probably have forced your switch to reset.
༺ 0100 1101 0010 10ཏ1 0010 0110 1010 1110 ༻
  0  
  0  
#6
Options
Re:SG3216 hacked
2017-01-05 11:02:05
Hi, I agree with R1D2, I dont think its an issue about hacking, it is probably a forced reset due to the high temperature or other factors about the environment.
  0  
  0  
#7
Options