ASUS routers have emerged as the target of a nascent botnet called Cyclops Blink, almost a month after it was revealed the malware abused WatchGuard firewall appliances as a stepping stone to gain remote access to breached networks. According to a new report published by Trend Micro, the botnet’s “main purpose is to build an […]
Cybersecurity specialists report the detection of some severe vulnerabilities in Zyxel Armor routers, mainly used in home environments. According to the report, successful exploitation of these flaws would allow threat actors to fully compromise the affected system. Below are brief descriptions of the reported flaws, in addition to their respective identification keys and scores assigned […]
Cisco has patched multiple critical security vulnerabilities impacting its RV Series routers that could be weaponized to elevate privileges and execute arbitrary code on affected systems, while also warning of the existence of proof-of-concept (PoC) exploit code targeting some of these bugs. Three of the 15 flaws, tracked as CVE-2022-20699, CVE-2022-20700, and CVE-2022-20707, carry the […]
Cybersecurity specialists from Akamai reported the detection of a malicious campaign based on the abuse of Universal Plug and Play (UPnP) protocols in order to hack routers and use them for cybercriminal purposes. The campaign was identified as Eternal Silence and turns the affected routers into a proxy server part of a cybercriminal infrastructure. It […]
Cybersecurity specialists report the detection of two critical vulnerabilities in some router models manufactured by the technology firm TP-Link. According to the report, successful exploitation of these flaws would allow threat actors to deploy all kinds of attacks against vulnerable systems. Below are brief descriptions of the reported flaws, in addition to their respective tracking […]
SentinelOne cybersecurity specialists report the detection of CVE-2021-45388, a severe remote code execution (RCE) vulnerability in the KCodes NetUSB kernel module. This is a project employed by numerous hardware vendors to add USB over IP functionality into products such as routers, printers, and storage drives. The vulnerability was identified by researcher Max Van Amerongen during […]
Cybersecurity specialists report the detection of multiple vulnerabilities in ZTE MF971R hotspot routers. According to the report, the successful exploitation of the reported failures would allow the deployment of all kinds of risk scenarios. Below are brief descriptions of the detected flaws, in addition to their respective identification keys and scores assigned according to the […]
Networking equipment company Netgear has released patches to remediate a high-severity remote code execution vulnerability affecting multiple routers that could be exploited by remote attackers to take control of an affected system. Traced as CVE-2021-40847 (CVSS score: 8.1), the security weakness impacts the following models – R6400v2 (fixed in firmware version 1.0.4.120) R6700 (fixed in […]
Cybersecurity specialists from Fidus Information Security reported the detection of a critical zero-day vulnerability in Virgin Media Super Hub 3 whose successful exploitation would allow threat actors to reveal the real IP addresses of VPN users. Tracked as CVE-2019-16651, the flaw was reported almost two years ago, although given its nature and delay in correction […]
Over the summer the routers that are compromised by the massive Mēris DDoS botnet could be now cleaned, since MikroTik, the Latvian network equipment manufacturer has shared the proper guide and information to do so. As in recent times, we witnessed that how Yandex was encountering a huge DDoS attack that was conducted by the […]
After the huge pandemic attack of Covid-19, there are many employees who have started working remotely from home, therefore, the attack rate of the different vulnerabilities has increased rapidly. The security analysts of Palo Alto Networks now want to help different companies and their employees, so that they can circumvent these dangers. Palo Alto announced […]
Information security experts report the discovery of an authentication evasion vulnerability that would allow threat actors to compromise the networks to which at least 20 different router models connect. According to expert Evan Grant from security firm Tenable, the vulnerability was described as a critical path traversal error tracked as CVE-2021-20090 and received a score […]
Netgear security teams announced the correction of three security flaws in their routers. According to the report, successful exploitation of reported flaws would allow threat actors to bypass security mechanisms in corporate networks to steal sensitive information. The flaws reside in the Netgear DGN-2200v1 series family of routers and were discovered by Microsoft security researchers […]
Although it is underestimated, router security is vital to protect our networks from intruders and take the most out of their features, as network security experts from the International Institute of Cyber Security (IICS) mention. Manufacturers also don’t care about this, as many routers are launched with multiple easy to exploit vulnerabilities, such as remote […]
The enthusiasm behind buying a new electronic device always pushes us to want to see it function right away. That’s what happens precisely for most of us who purchase wifi routers. I remember, the first time I bought mine, I tried setting it up without even looking at the manual – I felt that was […]
If you are using one of the Spectrum compatible routers for your internet needs, one of the most important things that you need to do with it is to secure it. Having your home network completely secure can help you in a variety of ways. For instance, preventing intruders and malware from surfacing on your […]
Highly useful and practical as they are, wireless routers can cost us a lot if we fail to secure them properly. It is not only a few cases of hackers, scammers, and even identity theft that keep on appearing in the daily news headlines. Some of these arise out of the poor security set-up some of […]
Cisco released a security update for critical Authentication Bypass vulnerability that resides in the Cisco REST API virtual service container for Cisco IOS XE Software allows a remote attacker to bypass the authentication in managed Cisco devices. Cisco IOS XE is an internetworking OS that mainly deployed in Cisco ARS 1000 series routers and Catalyst switches such […]
D-Link has refused to patch a serious security flaw that has affected the four models of its home routers. The vulnerability tagged as CVE-2019-16920 allows anyone to remotely execute code and gain access to the router. It has affected the following D-Link router models: D-Link DIR-655 D-Link DIR-866L D-Link DIR-652 D-Link DHP-1565 The flaw was […]
Security researchers disclosed a new unauthenticated command injection vulnerability in some of the D-link routers. The vulnerability can be tracked as CVE-2019-16920 and rated as critical. Successful exploitation of the vulnerability results in Remote Code Execution, an attacker can trigger the vulnerability remotely to access the router login page without authentication. D-link Routers Affected The […]
Router exploit shovel is an automated application generation tool for stack overflow types on wireless routers. The tool implements the key functions of exploits, it can adapt to the length of the data padding on the stack, generate the ROP chain, generate the encoded shellcode, and finally assemble them into a complete attack code. The […]