Despite advancements in cybersecurity, basic passwords like βadminβ and βrootβ remain widely used for FTP servers in 2025, making them vulnerable to attacks. Research from Spec Ops highlights ongoing password spraying attacks on legacy FTP ports, emphasizing the need for better password hygiene. #FTPVulnerabilities #PasswordSpraying
Keypoints :
- Spec Ops conducted a 30-day study on attack attempts targeting FTP port 21 through their Honeypot system.
- FTP over port 21 is considered outdated and insecure compared to SFTP over port 22, as it transmits data in plain text.
- The most common passwords used in attacks were βadminβ and βroot,β indicating poor password security practices.
- Attackers continue to target FTP servers with basic credentials, showing widespread vulnerabilities.
- Many organizations still rely on legacy FTP protocols, risking exposure to unauthorized access.
- Users with weak passwords on FTP servers should immediately update their credentials to improve security.
- Youtube Video: https://www.youtube.com/watch?v=z-Rw5tk_InI
- Youtube Channel: Hak5
- Youtube Published: Sun, 25 May 2025 14:01:21 +0000