The situation with British ISP TalkTalk has become even worse as a variant of the Mirai worm has allowed hackers to create a large botnet from its subscribers’ routers and the ISP’s response has been insufficient. A research team at Imperva Incapsula has found that the a variant of the Mirai worm, which it calls […]
Category: Hack of Mass Destruction
Problems at British ISP TalkTalk continue
The researcher who discovered that the customer routers of British ISP TalkTalk were under attack has found that the problems didn’t end there. Pen Test Partners’ Ken Munro says that not only were tens of thousands of routers attacked with the Mirai worm, but they were also made to disclose their SSID (commonly known as the Network […]
100K Brits Knocked Offline as Mirai Problem Continues
The BBC is reporting that 100,00 customers of the British ISPs Talk Talk and Post Office have been knocked offline by an attack on their routers by a modified form of the Mirai worm. This is the same problem that recently affected the German ISP Deutsche Telekom which cause over 900,000 of its customers to lose […]
RouterCheck responds to the Deutsche Telekom problem
In light of the recent events involving the compromised routers in the Deutsche Telekom network, RouterCheck will now check for some of the indications that a router may be vulnerable to similar attacks. Earlier this week, close to 1,000,000 Deutsche Telekom customers were knocked off the internet when hackers began to attack their routers. Starting today, […]
Is Deutsche Telekom the Scariest Ever “Hack of Mass Destruction”?
November 2016 will go down in history as a month where the unexpected actually happened. First, the Chicago Cubs, after a 108-year drought, won the World Series. Next, Donald Trump won the U.S. presidential election. Now, as this tumultuous month draws to a close, a massive attack against nearly one million home routers of Deutsche Telekom AG customers […]
Wifatch – The Router Trojan from Friendly Hackers?
Yesterday, cybersecurity firm Symantec reported on a new piece of malware called Linux.Wifatch that attacks Linux-based home routers. And by “attack” we mean that it patches security holes that it finds to make the routers safer. Hey, wait…. That’s right, this router malware does not modify the user’s DNS settings nor does it launch a distributed […]
RouterCheck now detects the “Kafeine Vulnerability”
Security researcher Kafeine recently discovered a web-based attack tool that hackers have been using to compromise home routers. The attack utilizes Cross-Site Request Forgery (CSRF) vulnerabilities that are present in many popular routers. The list of router vendors affected include: ASUS Belkin D-Link Edimax Linksys Medialink Microsoft Netgear Tenda TP-Link Trendnet ZyXEL The attack modifies the […]
Shellshock and home routers
By now you’ve likely heard about the Shellshock vulnerability (also known as CVE-2014-6271). It’s a vulnerability that was recently discovered in the bash shell, a very old and central part of the Unix/Linux system. This vulnerability has apparently been around for a very long time, but has just recently been discovered. What’s Shellshock? Shellshock is a […]
Major Problems with TR-069
When we began to look at the security issues with home routers, we ran right into a protocol called TR-069, also known as CWMP (customer-premises equipment wide area network management protocol). This protocol allows ISPs to remotely manage home networking devices that they provide to their subscribers. This means that they can to do things […]
Massive Attack Targets Asian Routers
A massive Hack of Mass Destruction has been unleashed on routers primarily in Asia. Discovered by Team Cymru, this attack is believed to have affected over 300,000 devices, primarily in Vietnam, India and Italy. The attack modifies the DNS settings on the compromised routers, and points them to DNS servers that are controlled by criminals. […]