Skip to main content

You should reboot and update your router to protect from malware

[ad_1]


I typically only reboot my router when my internet starts moving at a crawling pace. The simple act of turning it off, waiting ten seconds, then turning it back on is often enough effort to fix whatever flaw is flummoxing your internet connection. Now, however, the FBI and several high-profile internet security organizations are recommending you reboot in an effort to disable a potentially harmful piece of malware called VPNFilter. Take a minute to do that now, then come back and get the rest of the info about the potential problem. We’ll wait.



What is it?



VPNFilter sets out to do the types of things that many pieces of malicious code aim to accomplish. It can intercept, reroute, or track your data, and even harm your hardware by dishing out harmful code. Unlike a typical virus that you pick up from clicking on a sketchy email attachment or visiting a particularly grimy file sharing site, VPNFilter attacks your network at the router or any network-attached storage (like hard drives with wireless capabilities) you may have on your network.



Cisco’s security group, Talos, has been investigating the spread of VPNFilter and a related piece of malware called BlackEnergy that’s responsible for large scale cyber attacks in the Ukraine. They issued the original statement about the possible effects. “the malware has a destructive capability that can render an infected device unusable, which can be triggered on individual victim machines or en masse, and has the potential of cutting off internet access for hundreds of thousands of victims worldwide.”


How does it work?



VPNFilter is a three-stage platform, which makes it more difficult to address than a typical exploit because the first stage (known as a persistent loader) acts as a foundation for other malicious software. Stage two and stage three software act like plug-ins that work with the groundwork laid by stage one. It’s a setup that gives bad actors lots of flexibility when it comes to causing harm.



According to Talos, rebooting your router will wipe away stage two and stage three code, but stage one will remain, which is why it’s also recommended that you update your router with the latest patches from the manufacturer in order to ensure that any security holes are filled.



What kind of equipment is at risk for infection?



Symantec list of possibly infected devices.



  • Linksys E1200


  • Linksys E2500


  • Linksys WRVS4400N


  • Mikrotik RouterOS for Cloud Core Routers: Versions 1016, 1036, and 1072


  • Netgear DGN2200


  • Netgear R6400


  • Netgear R7000


  • Netgear R8000


  • Netgear WNR1000


  • Netgear WNR2000


  • QNAP TS251


  • QNAP TS439 Pro


  • Other QNAP NAS devices running QTS software


  • TP-Link R600VPN


If you have any of these routers, it’s especially important that you reboot and patch your hardware to the most recent version. If you get your router through an ISP, you can also call the provider to see if they have any further instructions, which may include swapping out your gear.



The malware has targeted more than half a million devices across more than 50 countries in recent weeks, with a substantial spike in activity starting around May 8th.



What if it’s not fixed?



The Justice Department has announced that an organization known as the Sofacy Group, which “targets government, military, security organizations, and other targets of perceived intelligence value”



The software can rope the infected devices into botnets—huge clusters of machines working together—capable of causing massive interruptions in internet services and other problems.



In short: go and reboot your router then run an update.




[ad_2]

Written By Stan Horaczek

Comments

Post a Comment

Popular posts from this blog

Ice technicians are the secret stars of the Winter Olympics

[ad_1] The emphasis of this year's two-week-long Winter Olympic Games has been placed squarely on the Olympians themselves. After all, the stated purpose of the international competition is to bring together the world’s greatest athletes in a nail-biting competition across fifteen different winter sports. But before the curlers, skiers, and skaters even arrived in Pyeongchang, South Korea, the Olympians of the ice technician world were already a few weeks deep in a competition of their own. Mark Callan of the World Curling Federation and Markus Aschauer of the International Bobsleigh and Skeleton Federation both say they’re hoping to make the best ice the Winter Olympics have ever seen. To transform the barren concrete jungle of existing tracks and arenas into an ice- and snow-covered wonderland is an enormous undertaking. And it takes a keen understanding of the physics and chemistry that keeps frozen precipitation pristine. Curling Callan has been making and maintaining ic...
Post a Comment
Read more

Humans flourished through a supervolcano eruption 74,000 years ago (so you can make it through Tuesday)

[ad_1] About 74,000 years ago, a large chunk of a Pacific island exploded. It sent ash and other debris around the world, including to the southern tip of Africa, where it would be found by a team of international scientists and entered as the latest data point in one of the hottest debates in paleoanthropology ( I know ): Did the Toba supervolcano thrust our planet into a 1,000-year volcanic winter, thus bottle-necking animals and plants alike? Or was it just a little blip on our historic radar? That’s the contentious arena into which our intrepid researchers venture, this time with a new study in Nature establishing that humans in modern-day South Africa not only survived, but flourished after the Toba eruption. Where once was (we think, maybe) a mountain, there is now a huge caldera with a lake inside, and an island inside that. Their evidence shows that debris from the explosion landed 9,000 kilometers (5592.3 miles) away, the farthest distance traveled ever recorded for the ...
Post a Comment
Read more

These 1950s experiments showed us the trauma of parent-child separation. Now experts say they're too unethical to repeat—even on monkeys.

[ad_1] John Gluck’s excitement about studying parent-child separation quickly soured. He’d been thrilled to arrive at the University of Wisconsin at Madison in the late 1960s, his spot in the lab of renowned behavioral psychologist Harry Harlow secure. Harlow had cemented his legacy more than a decade earlier when his experiments showed the devastating effects of broken parent-child bonds in rhesus monkeys. As a graduate student researcher, Gluck would use Harlow’s monkey colony to study the impact of such disruption on intellectual ability. Gluck found academic success, and stayed in touch with Harlow long after graduation. His mentor even sent Gluck monkeys to use in his own laboratory. But in the three years Gluck spent with Harlow—and the subsequent three decades he spent as a leading animal researcher in his own right—his concern for the well-being of his former test subjects overshadowed his enthusiasm for animal research. Separating parent and child,...
Post a Comment
Read more