094 90 48200     Get SUPPORT

Aniar IT Services Blog

Did You Know Your Router Can be Infected?

Did You Know Your Router Can be Infected?

A new type of malware is targeting routers in what is considered a large enough threat that even the FBI is addressing it. Even worse, a router isn’t necessarily a device that you think would be vulnerable to attack from a hacker. What can you do to keep your business’ Internet access points secure from hacking attacks? Let’s dig in to the details about what the VPNFilter malware does and how you can address it.

Explaining VPNFilter
The malware in question, VPNFilter, hides in routers for both individual users and small businesses with the intention of persisting even if the device has been rebooted. VPNFilter targets devices that are Ukraine-based most of the time, but others have been known to fall victim to this as well. It’s thought that the VPNFilter malware originated from a group called Sofacy. The malware itself takes three steps to become an issue for your organization.

The first is that the malware sets itself up so that it will persist even if the device is rebooted or turned off. The second stage of the attack consists of the malware installing permissions for itself to change router settings, manage files, and execute commands. This allows the router to essentially brick itself, leading to considerable connectivity problems. The final stage of this malware lets the hackers look at the data packets passing to and from the device, as well as the ability to issue commands and communicate through the Tor web browser.

The reason why the FBI recommends resetting your router is because the second and third steps are wiped when you do so, but the first stage remains regardless.

Is Your Router Affected?
While not all routers are affected, there is still a sizeable list of confirmed contaminated devices. Some of the affected brands include:

  • Asus
  • D-Link
  • Huawei
  • Linksys
  • MikroTik
  • Netgear
  • TP-Link
  • Ubiquiti
  • Upvel
  • ZTE

For a comprehensive list of affected devices, you can see specifics for each brand at Symantec’s website: https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

How to Fix It
The best way to resolve these issues with VPNFilter is to perform a factory reset for your router, which completely deletes anything installed during the first stage of the threat. If the router’s manufacturer has administered a patch for the vulnerability, you can also install it following a factory reset so that you’ll never have to deal with this vulnerability again.

For more updates and tips on some of the latest threats, keep an eye on Aniar IT Services’s blog.

Know Your Tech: CMS
How to Be Selective when Picking a Backup Solution
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Monday, February 18 2019

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Technology Best Practices Privacy Google Business Computing User Tips Tech Term Cloud Data Backup Network Security Mobile Devices Email Microsoft Data Data Recovery Hardware VoIP Hosted Solutions Hackers Cloud Computing Innovation Productivity Smartphone Communications Internet Malware Communication IT Services Workplace Tips Browser IT Support Android Backup Managed IT Services Artificial Intelligence Windows 10 Internet of Things Smartphones Business Chrome How To Efficiency Small Business Network Router Cybersecurity Outsourced IT Applications Business Continuity Computers Computer Information Windows Software Collaboration Word Gadgets Cybercrime Business Management Office 365 Mobile Device Saving Money BDR Spam Mobile Device Management Settings Encryption Data Security Two-factor Authentication Server Passwords Managed Service Data Protection Vulnerability Ransomware Holiday Miscellaneous Money Facebook Connectivity Software as a Service OneNote CES Virtualization Fraud Botnet Human Resources Wi-Fi Disaster Recovery Unsupported Software Infrastructure Windows 7 Managed IT services Data Storage Keyboard Content Management Redundancy Voice over Internet Protocol VPN Telephone Systems Password Virtual Assistant Apps Spam Blocking Social Engineering Blockchain Avoiding Downtime Automation Phishing Paperless Office Microsoft Office Bring Your Own Device Save Money Operating System Comparison IT Management App Google Docs Identity Theft Website BYOD Telephone System Law Enforcement Google Drive Telephony Upgrade Scam Machine Learning Managed IT Social Media Sports Private Cloud Business Intelligence IT Plan Access Control Remote Monitoring Update Cast Evernote Cleaning HBO Training YouTube Mouse Telecommuting Recycling Devices Google Search Smart Office Public Cloud Authentication Safe Mode Security Cameras Computer Care Skype Practices Networking Shortcuts Outlook Government Cache Remote Worker Data loss Amazon Microchip Augmented Reality Travel Computer Fan Remote Work eWaste Thought Leadership Save Time Patch Management Staff Document Management Camera Tools Work/Life Balance Software Tips Bandwidth Smartwatch Wiring Start Menu Charger Hosted Computing Enterprise Content Management Mobility Frequently Asked Questions Recovery Wireless Internet Sync Cortana Multi-Factor Security Alert Amazon Web Services Accountants Search Engine The Internet of Things FENG Legal Proactive IT Hacker WiFi Millennials Password Manager Nanotechnology Health USB Firewall Wireless Charging Inventory Password Management Social Excel HIPAA Servers Bing Big Data Criminal MSP Flash Meetings Digital Signature Entertainment Warranty Value Solid State Drive Workforce Business Mangement Smart Tech Employee Electronic Medical Records Wire Unified Threat Management Windows 10s Specifications Google Apps NIST Vendor Tip of the week Downtime Trending Screen Mirroring Online Shopping HVAC Help Desk Addiction File Sharing HaaS Employer-Employee Relationship Credit Cards PDF Printer Audit Physical Security Gmail Digital Signage Data Management Mobile Computing Workers Cryptocurrency Display Windows Server 2008 Root Cause Analysis Windows 10 Public Speaking Regulation Quick Tips Presentation Emergency Hard Drives Lithium-ion battery Search Company Culture Wireless Technology 5G Tech Support Safety IBM CrashOverride Managing Stress Productivity Marketing Printers Budget Competition Customer Relationship Management Managed Service Provider Twitter Net Neutrality IP Address Hiring/Firing Users Customer Service Fun ISP Mobile Office Domains Compliance Wireless