The recent vulnerability that’s been found in several Netgear routers is receiving a lot of attention due to its severity. Many leading computer security experts say that the problem is so bad that if you have one, you should turn the device off and remove it from your network. But how do you tell whether your router […]
RouterCheck now detects the Netgear Authentication Bypass problem that was disclosed several days ago by Compass Security Schweiz Ltd. This is a serious problem that allows hackers to gain access to a router’s administration functionality without having to login. Several thousands of routers are believed to have been affected by a targeted attack against this vulnerability. […]
Security researcher Kafeine recently discovered a web-based attack tool that hackers have been using to compromise home routers. The attack utilizes Cross-Site Request Forgery (CSRF) vulnerabilities that are present in many popular routers. The list of router vendors affected include: ASUS Belkin D-Link Edimax Linksys Medialink Microsoft Netgear Tenda TP-Link Trendnet ZyXEL The attack modifies the […]
SOHOpelessly Broken, the contest that tested router security and was run as part of the DEFCON hacker conference has announced the winner. The winner: Craig Young of security firm TripWire uncovered 11 of the 15 vulnerabilities that were found as a part of the contest. The real winners: hopefully all of us as the contest […]
The Electronic Frontier Foundation (EFF) released the first version of their open wireless router firmware today that supports the work of the Open Wireless Movement. Called a “hacker alpha version”, this software aims to deal with many of the issues of security and privacy that plague most traditional router vendors today. It was announced today […]
Netgear is running a fairly interesting campaign for people to publicly shame their router. Read a little more on our blog, and it’s easy to find lots of examples of routers doing some pretty shameful things. Hopefully, this results in some vendors taking notice so that their products don’t end up here. #routershame Tweets
We’re often asked, “What’s the best AC router to buy”? Well, that’s not such a simple question and doesn’t have such a simple answer. But the guys over at MaximumPC thought they’d tackle the question and look at the best 802.11ac routers on the market. Their results can be found here. What do they like? […]
Remember the backdoor that was discovered in Linksys and Netgear routers a short time ago? Remember when they fixed it? Not so fast. It turns out that they didn’t fix it, they “fixed” it. Eloi Vanderbeken of Synacktiv Digital Security, the guy who found the original backdoor, has discovered that the “fix” simply hid the original […]
Eloi Vanderbeken of Synacktiv Digital Security has discovered a very interesting backdoor into Linksys and Netgear routers. He found it during Christmas vacation at his family’s home where he needed access to a Linksys WAG200G wireless DSL gateway, but didn’t have the password. Scanning the network he found that the device was listening on port 32764. Since this […]
There’s a good article on home router security that’s worth taking a look at. It’s a bit of a survey and contains information about some of the current hot topics: The Linksys Moon worm HNAP issues UPnP issues CSRF problems Polish cybercrimes