Back to Home

Beeline interferes with user traffic

beeline · advertising · security · internet provider

Beeline interferes with user traffic



    Actually, the history of the provider’s embedding of its scripts in visited sites is not new.
    Take at least this habrahabr.ru/post/142909 .
    Today I found a similar insert in Beeline ("Home Internet). Directly through their proprietary router.
    Try typing in the browser 192.168.1.1/scwn.js . Is there anything?
    I remind you that 192.168.1.1 is the ip of your router.

    About the router
    Manufacturer Sercomm
    Model Smart Box
    Software version v2.0.26
    Recovery Version v2.0.19
    Software release date 2015-04-16, 04:33:58
    Software release tag SERCOMM.BEELINE Hardware
    version v2
    Boot version 1.05

    We load any site (well, for example, lenta.ru) and see this miracle: The



    contents of this file:


    Yes, that's right - a third-party script is loading (and here is something I’m not at all sure of the reliability and security of this resource).

    I think it’s not worth explaining that this is unsafe and violates my civil rights (lawyers correct me if not right).
    In fact, the provider embeds its block of code in the sites I visit, which theoretically (yes, I think, and practically) collects information about visits, shows ads, etc.

    If there are Beeline representatives, then it would be nice to clarify the situation. Anyway - is this normal?

    Update: A link from a script leads to a service for advertising in free wifi zones - wifly.net
    Update:A small investigation led to interesting information about the availability of special firmware for this router, which implements this vulnerability - en.wiflyad.net/flyadbox.html ( Google cache )
    Update: In the comments I received a little clarification from the representative of the beeline - habrahabr.ru/post/ 262631 / # comment_8502213

    Read Next