Home

About Us

IT Services

Understanding IT

News & Events

Blog

Support

Contact Us

Blog
  • Register
2 minutes reading time (392 words)

Did You Know Your Router Can be Infected?

Did You Know Your Router Can be Infected?

A new type of malware is targeting routers in what is considered a large enough threat that even the FBI is addressing it. Even worse, a router isn’t necessarily a device that you think would be vulnerable to attack from a hacker. What can you do to keep your business’ Internet access points secure from hacking attacks? Let’s dig in to the details about what the VPNFilter malware does and how you can address it.

Explaining VPNFilter
The malware in question, VPNFilter, hides in routers for both individual users and small businesses with the intention of persisting even if the device has been rebooted. VPNFilter targets devices that are Ukraine-based most of the time, but others have been known to fall victim to this as well. It’s thought that the VPNFilter malware originated from a group called Sofacy. The malware itself takes three steps to become an issue for your organization.

The first is that the malware sets itself up so that it will persist even if the device is rebooted or turned off. The second stage of the attack consists of the malware installing permissions for itself to change router settings, manage files, and execute commands. This allows the router to essentially brick itself, leading to considerable connectivity problems. The final stage of this malware lets the hackers look at the data packets passing to and from the device, as well as the ability to issue commands and communicate through the Tor web browser.

The reason why the FBI recommends resetting your router is because the second and third steps are wiped when you do so, but the first stage remains regardless.

Is Your Router Affected?
While not all routers are affected, there is still a sizeable list of confirmed contaminated devices. Some of the affected brands include:

  • Asus
  • D-Link
  • Huawei
  • Linksys
  • MikroTik
  • Netgear
  • TP-Link
  • Ubiquiti
  • Upvel
  • ZTE

For a comprehensive list of affected devices, you can see specifics for each brand at Symantec’s website: https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

How to Fix It
The best way to resolve these issues with VPNFilter is to perform a factory reset for your router, which completely deletes anything installed during the first stage of the threat. If the router’s manufacturer has administered a patch for the vulnerability, you can also install it following a factory reset so that you’ll never have to deal with this vulnerability again.

For more updates and tips on some of the latest threats, keep an eye on Alternative IT Solutions’s blog.

Know Your Tech: CMS
How to Be Selective when Picking a Backup Solution
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Sunday, July 22, 2018
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Security Technology Best Practices Cloud Business Computing Privacy Network Security Email Google Data Backup Malware Tech Term VoIp Cloud Computing Managed IT Services Hackers Microsoft Managed IT Services Mobile Devices Software Outsourced IT IT Support Hosted Solutions Backup Efficiency Small Business Internet Data Recovery Android Communications Cybercrime Ransomware Innovation BDR Saving Money How To Communication Cybersecurity Internet of Things User Tips Alert Data Network Phishing Artificial Intelligence Two-factor Authentication Smartphone Smartphones Mobile Device Management Data Security Computers Browser Collaboration Router Hardware Windows Chrome Money Productivity Data Protection Business Management Business Continuity Connectivity Disaster Recovery Social Engineering Managed IT Office 365 IT Management BYOD Remote Monitoring Business Intelligence Telephone Systems Spam Identity Theft Business IT Services Windows 10 Word Vulnerability OneNote Budget Operating System Website Comparison Spam Blocking Upgrade Bring Your Own Device Data Breach Value Facebook Work/Life Balance Gadgets Compliance Save Money Avoiding Downtime Private Cloud Workers Update Infrastructure Computer CES Applications Microsoft Office Law Enforcement Apps IT Plan Password Wi-Fi Holiday Content Management Virtualization Unsupported Software Windows 7 Credit Cards VPN Employer-Employee Relationship Mobile Device Paperless Office App Servers Server Data Storage Blockchain Social Media Document Management Networking Redundancy Frequently Asked Questions Big Data Botnet Risk Management Electronic Medical Records PDF Password Management IT Consultant Cortana Bandwidth Skype HIPAA USB SaaS Wireless Charging Hiring/Firing Black Market Hosted Computing Sync Content Filtering Flash Legal Flexibility IBM Amazon Solid State Drive YouTube Virtual Assistant Downtime Excel Business Mangement Devices Travel Telecommuting Windows 10s Telephony Encryption NIST Scam Google Apps Cleaning Specifications Data Management Wire Current Events Government Physical Security Inventory Automation Information Technology webinar Lifestyle Data loss Criminal Addiction Firewall Supercomputer Amazon Web Services IT Support Audit Telephone System Computer Care Root Cause Analysis Tip of the week Gmail Thought Leadership Remote Work Cryptocurrency Voice over Internet Protocol Start Menu Settings Millennials Google Drive Human Resources Sports Knowledge Access Control Regulations Conferencing Mobile Computing Screen Mirroring Online Shopping Training Data Warehousing Smart Tech Windows Server 2008 Recycling Public Cloud Safe Mode Office Tips Leadership Authentication Tools Workforce Staff Smart Office Workplace Tips Network Congestion FENG HBO Cast Cache Marketing Mobility Evernote Computer Fan HVAC eWaste Mobile Entertainment Multi-Factor Security Outlook Password Manager Nanotechnology Digital Signature Enterprise Content Management HaaS Google Docs Theft Charger Netflix Wireless Internet Software as a Service Keyboard The Internet of Things Software Tips Practices Trending Samsung Meetings Patch Management Proactive IT Professional Services Fraud Passwords Recovery Accountants Machine Learning Education Assessment Computer Accessories Congratulations Business Owner Twitter Rootkit Bata Backup Students Television Bluetooth Two Factor Authentication Fiber-Optic Employer Employee Relationship Vendor Management IoT Company Culture Loyalty Worker VoIP Strategy Healthcare Public Computer Office Quick Tips Cables Health Safety Unified Threat Management Save Time Managing Stress Miscellaneous Streaming Media Managed Service Provider Help Desk Analysis Electronic Health Records Windows 10 WiFi Unified Communications Hacking Battery Automobile Insurance Content Filter Consultation File Sharing Thank You Storage Business Technology

Latest News & Events

Alternative IT Solutions is proud to announce the launch of our new website at https://www.alternative-IT.co.uk. The goal of the new website is to make it easier for our existing clients to submit and manage support requests, and provide more information about our ser...

Contact Us

Learn more about what Alternative IT Solutions can do for your business.

Call Us Today
Call us today
(0)20 8498 4300

Avocet House, Trinity Park, Trinity Way
London, England E4 8TD