Latest Router news

ASUS routers vulnerable to critical remote code execution flaws

Three critical-severity remote code execution vulnerabilities impact ASUS RT-AX55, RT-AX56U_V2, and RT-AC86U routers, potentially allowing threat actors to hijack devices if security updates are not installed.
- Bill Toulas
- September 05, 2023
- 10:58 AM
- 3
Gafgyt malware exploits five-years-old flaw in EoL Zyxel router

Fortinet has issued an alert warning that the Gafgyt botnet malware is actively trying to exploit a vulnerability in the end-of-life Zyxel P660HN-T1A router in thousands of daily attacks.
- Bill Toulas
- August 10, 2023
- 04:35 PM
- 0
Super Admin elevation bug puts 900,000 MikroTik devices at risk

A critical severity 'Super Admin' privilege elevation flaw puts over 900,000 MikroTik RouterOS routers at risk, potentially enabling attackers to take full control over a device and remain undetected.
- Bill Toulas
- July 25, 2023
- 06:08 PM
- 3
U.S. preparing Cyber Trust Mark for more secure smart devices

A new cybersecurity certification and labeling program called U.S. Cyber Trust Mark is being shaped to help U.S. consumers choose connected devices that are more secure and resilient to hacker attacks.
- Ionut Ilascu
- July 18, 2023
- 09:12 PM
- 3
AVrecon malware infects 70,000 Linux routers to build botnet

Since at least May 2021, stealthy Linux malware called AVrecon was used to infect over 70,000 Linux-based small office/home office (SOHO) routers and add them to a botnet designed to steal bandwidth and provide a hidden residential proxy service.
- Sergiu Gatlan
- July 14, 2023
- 02:35 AM
- 3
Mirai botnet targets 22 flaws in D-Link, Zyxel, Netgear devices

A variant of the Mirai botnet is targeting almost two dozen vulnerabilities aiming to take control of D-Link, Arris, Zyxel, TP-Link, Tenda, Netgear, and MediaTek devices to use them for distributed denial-of-service (DDoS) attacks.
- Bill Toulas
- June 22, 2023
- 01:53 PM
- 1
New Condi malware builds DDoS botnet out of TP-Link AX21 routers

A new DDoS-as-a-Service botnet called "Condi" emerged in May 2023, exploiting a vulnerability in TP-Link Archer AX21 (AX1800) Wi-Fi routers to build an army of bots to conduct attacks.
- Bill Toulas
- June 20, 2023
- 05:06 PM
- 0
ASUS urges customers to patch critical router vulnerabilities

ASUS has released new firmware with cumulative security updates that address vulnerabilities in multiple router models, warning customers to immediately update their devices or restrict WAN access until they're secured.
- Sergiu Gatlan
- June 19, 2023
- 01:30 PM
- 6
Fortinet fixes critical RCE flaw in Fortigate SSL-VPN devices, patch now

Fortinet has released new Fortigate firmware updates that fix an undisclosed, critical pre-authentication remote code execution vulnerability in SSL VPN devices, tracked as CVE-2023-27997.
- Lawrence Abrams
- June 11, 2023
- 11:43 AM
- 0
ASUS routers knocked offline worldwide by bad security update

ASUS has apologized to its customers for a server-side security maintenance error that has caused a wide range of impacted router models to lose network connectivity.
- Bill Toulas
- May 19, 2023
- 12:11 PM
- 5
TP-Link Archer WiFi router flaw exploited by Mirai malware

The Mirai malware botnet is actively exploiting a TP-Link Archer A21 (AX1800) WiFi router vulnerability tracked as CVE-2023-1389 to incorporate devices into DDoS (distributed denial of service) swarms.
- Bill Toulas
- April 25, 2023
- 07:45 AM
- 0
Hackers can breach networks using data on resold corporate routers

Enterprise-level network equipment on the secondary market hide sensitive data that hackers could use to breach corporate environments or to obtain customer information.
- Ionut Ilascu
- April 23, 2023
- 12:32 PM
- 2
US, UK warn of govt hackers using custom malware on Cisco routers

The US, UK, and Cisco are warning of Russian state-sponsored APT28 hackers deploying a custom malware named 'Jaguar Tooth' on Cisco IOS routers, allowing unauthenticated access to the device.
- Lawrence Abrams
- April 18, 2023
- 05:42 PM
- 1
PoC exploits released for Netgear Orbi router vulnerabilities

Proof-of-concept exploits for vulnerabilities in Netgear's Orbi 750 series router and extender satellites have been released, with one flaw a critical severity remote command execution bug.
- Bill Toulas
- March 22, 2023
- 10:14 AM
- 0
New malware infects business routers for data theft, surveillance

An ongoing hacking campaign called 'Hiatus' targets DrayTek Vigor router models 2960 and 3900 to steal data from victims and build a covert proxy network.
- Bill Toulas
- March 06, 2023
- 10:03 AM
- 1
NSA shares guidance on how to secure your home network

The U.S. National Security Agency (NSA) has issued guidance to help remote workers secure their home networks and defend their devices from attacks.
- Sergiu Gatlan
- February 22, 2023
- 04:40 PM
- 2
Over 19,000 end-of-life Cisco routers exposed to RCE attacks

Over 19,000 end-of-life Cisco VPN routers on the Internet are exposed to attacks targeting a remote command execution exploit chain.
- Sergiu Gatlan
- January 20, 2023
- 04:26 PM
- 1
Roaming Mantis’ Android malware adds DNS changer to hack WiFi routers

Starting in September 2022, the 'Roaming Mantis' credential theft and malware distribution campaign was observed using a new version of the Wroba.o/XLoader Android malware that incorporates a function for detecting specific WiFi routers and changing their DNS.
- Bill Toulas
- January 19, 2023
- 12:55 PM
- 0
Cisco warns of auth bypass bug with public exploit in EoL routers

Cisco warned customers today of a critical authentication bypass vulnerability with public exploit code affecting multiple end-of-life (EoL) VPN routers.
- Sergiu Gatlan
- January 11, 2023
- 01:50 PM
- 0
Synology fixes maximum severity vulnerability in VPN routers

Taiwan-based NAS maker Synology has addressed a maximum (10/10) severity vulnerability affecting routers configured to run as VPN servers.
- Sergiu Gatlan
- January 03, 2023
- 10:36 AM
- 0