VPNFilter router malware is a lot worse than everyone thought

Forum Moderators: phranque

Message Too Old, No Replies

VPNFilter router malware is a lot worse than everyone thought

check your stuff!

tangor

6:02 am on Jun 8, 2018 (gmt 0)

Asus, D-Link, Huawei, Ubiquiti, UPVEL, and ZTE: these are the vendors newly named by Cisco's Talos Intelligence whose products are being exploited by the VPNFilter malware.

As well as the expanded list of impacted devices, Talos warned that VPNFilter now attacks endpoints behind the firewall, and sports a “poison pill” to brick an infected network device if necessary.

[theregister.co.uk...]

Might be time to check your devices. There's a list of newly added items at the end of the article.

phranque

8:26 am on Jun 8, 2018 (gmt 0)

related thread:
VPNFilter Malware Has Killswitch For Routers [webmasterworld.com]

keyplyr

9:30 am on Jun 8, 2018 (gmt 0)

All those devices listed in both articles are lower-end routers presumably without the security of more expensive hardware being used in more demanding environments.

I was surprised to learn that the early suggestion to restart the router was only so investigators could tally the infected models, and not a fix.

tangor

10:24 am on Jun 8, 2018 (gmt 0)

Gotta start sumware. :)

The inet is riddled with these open holes and it is only by these catch up memes that progress can be made.

Not all of us use top end, so the warning is valid. Check your stuff!

keyplyr

10:38 am on Jun 8, 2018 (gmt 0)

Check your stuff!

Read the earlier discussion phranque linked. My stuff is secure, but thanks for the reminder.

tangor

10:46 am on Jun 8, 2018 (gmt 0)

You're welcome!