Did You Know Your Router Can be Infected?

Did You Know Your Router Can be Infected?

A new type of malware is targeting routers in what is considered a large enough threat that even the FBI is addressing it. Even worse, a router isn’t necessarily a device that you think would be vulnerable to attack from a hacker. What can you do to keep your business’ Internet access points secure from hacking attacks? Let’s dig in to the details about what the VPNFilter malware does and how you can address it.

Explaining VPNFilter
The malware in question, VPNFilter, hides in routers for both individual users and small businesses with the intention of persisting even if the device has been rebooted. VPNFilter targets devices that are Ukraine-based most of the time, but others have been known to fall victim to this as well. It’s thought that the VPNFilter malware originated from a group called Sofacy. The malware itself takes three steps to become an issue for your organization.

The first is that the malware sets itself up so that it will persist even if the device is rebooted or turned off. The second stage of the attack consists of the malware installing permissions for itself to change router settings, manage files, and execute commands. This allows the router to essentially brick itself, leading to considerable connectivity problems. The final stage of this malware lets the hackers look at the data packets passing to and from the device, as well as the ability to issue commands and communicate through the Tor web browser.

The reason why the FBI recommends resetting your router is because the second and third steps are wiped when you do so, but the first stage remains regardless.

Is Your Router Affected?
While not all routers are affected, there is still a sizeable list of confirmed contaminated devices. Some of the affected brands include:

  • Asus
  • D-Link
  • Huawei
  • Linksys
  • MikroTik
  • Netgear
  • TP-Link
  • Ubiquiti
  • Upvel
  • ZTE

For a comprehensive list of affected devices, you can see specifics for each brand at Symantec’s website: https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

How to Fix It
The best way to resolve these issues with VPNFilter is to perform a factory reset for your router, which completely deletes anything installed during the first stage of the threat. If the router’s manufacturer has administered a patch for the vulnerability, you can also install it following a factory reset so that you’ll never have to deal with this vulnerability again.

For more updates and tips on some of the latest threats, keep an eye on Infracore LLC’s blog.



No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Thursday, August 16 2018

Captcha Image

Tag Cloud

Tip of the Week Security Privacy Technology Best Practices Cloud Business computing Google Software Microsoft Malware Network Security Backup Hackers Hardware Innovation Tech Term Windows 10 Internet Data Business Email Smartphones Hosted Solutions Android Browser Managed IT Services Alert VoIP Small Business Business Continuity Smartphone Ransomware Data Backup Business Management Outsourced IT Office Mobile Devices Cloud Computing User Tips Computers Disaster Recovery Computer IT Services Efficiency Productivity Cybercrime Law Enforcement Communications Miscellaneous Router Chrome Collaboration Cybersecurity Productivity Money Passwords Data Recovery Password Social Media Facebook Virtualization Managed IT Services Windows Network Telephone Systems How To Artificial Intelligence Upgrade App Health Office 365 Communication Gadgets Social Engineering Work/Life Balance Quick Tips Internet of Things IT Support Mobile Device Management Microsoft Office Hacking Data Protection Phishing Data Breach Wi-Fi IT Support Data Security Word Applications Private Cloud Two-factor Authentication Workplace Tips Vulnerability Connectivity Apps Bring Your Own Device Google Drive Spam HaaS Automation Windows 10 Saving Money Office Tips Holiday OneNote Employer-Employee Relationship BDR History Redundancy Comparison Remote Computing IT Management Keyboard Charger Spam Blocking Patch Management Website CES Avoiding Downtime Flexibility Cleaning PDF IT Plan Operating System Scam Content Management Legal Worker Big Data Mobility Automobile Computer Care Managed Service Provider Business Intelligence Unsupported Software Government Blockchain Remote Monitoring Update Data Management Managed IT Identity Theft Samsung Infrastructure Electronic Medical Records Public Cloud Windows 7 Paperless Office Bandwidth Mobile Device Information Entertainment Marketing USB Value Save Money VPN BYOD Battery Networking Data Storage Server End of Support Troubleshooting Loyalty Business Mangement Worker Commute Start Menu Enterprise Content Management Save Time Accountants Cortana Thought Leadership Education Apple Audit YouTube Smart Technology Current Events Staff MSP Internet exploMicrosoft Excel Sports Telephone System Amazon Authentication Black Market Physical Security SaaS Gmail Tools Password Management Telecommuting IT solutions Google Apps Computing Infrastructure iPhone Computer Fan Sync Two Factor Authentication Knowledge Specifications Scalability File Sharing Experience Advertising Tip of the week Smart Office Voice over Internet Protocol Data loss Risk Management Amazon Web Services Nanotechnology Recovery Recycling Downtime NIST Hiring/Firing Remote Work Wireless Practices Relocation User Error Music Workers Addiction The Internet of Things Network Congestion Digital Signature webinar Windows 10s Windows Server 2008 Document Management Transportation Safety Best Practice Monitor Screen Mirroring Politics Rootkit Online Shopping Smart Tech HBO Books Assessment eWaste Root Cause Analysis Cryptocurrency Employer Employee Relationship Hosted Computing Wearable Technology Techology Cache Users FENG Telephony Servers IT Consultant Millennials Information Technology Encryption Conferencing Software Tips Benefits Multi-Factor Security HIPAA Content Cast Training Evernote Settings Outlook Wireless Internet Television Criminal Botnet Safe Mode Computer Accessories Credit Cards Inventory Search Humor Internet Exlporer Password Manager Virtual Reality Skype HVAC Leadership Workforce Instant Messaging Files Emails Hybrid Cloud Solid State Drive Flash Machine Learning Firewall Trending Human Resources Video Games Audiobook Data storage Managed Service Vendor Management Wireless Charging Devices Frequently Asked Questions Wire Emergency Public Computer Google Docs Meetings Travel Virtual Assistant Bluetooth Fraud Access Control How to Webinar Thank You CrashOverride Twitter Company Culture Compliance Congratulations Managing Stress Augmented Reality Regulation WiFi

Mobile? Grab this Article!

QR-Code dieser Seite

Recent Comments

JeffereyANoah 5 Useful Cloud Apps for Small Businesses
15 August 2018
Sharing these type stuff is very useful and hope you will provide us more like this one. I come here...
Jared Albert VoIP Delivers Benefits That a Traditional Phone System Can’t
13 August 2018
A traditional telephone system is installed for the happiness of the people. Majority of the concern...
Meredith Maddox Tip of the Week: Tip of the Week: Mirror or Cast Your Android Device’s Screen
08 August 2018
Android mobile phones are top of the list now a days every one wants to buy android phone. It’s a bi...
MarianneJCruz Tip of the Week: Got a Solid State Drive? Here’s How to Take Care of It
31 July 2018
What a review https://www.uk.com/how-do-you-do.html
Digital Hold The Case for Hosting Your Phone Solution In-House
24 February 2018
Informative Blog. Thanks a lot for the useful info.