SoylentNews is people
SoylentNews
For the first time, DNS redirection attacks against small office and home office (SOHO) routers are being delivered via exploit kits. French security researcher Kafeine said an offshoot of the Sweet Orange kit has been finding success in driving traffic from compromised routers to the attackers' infrastructure.The risk to users is substantial he said, ranging from financial loss, to click-fraud, man-in-the-middle attacks and phishing.
Perhaps it's time to demand OpenWrt compatibility? It's without backdoors by design, with continuous bug fixes, IPv6 support and unrestrained configuration capability. Embedded boxes seems to have a poor track record on bugs, transparency and robustness.
[Editor's Comment: Original Submission]
This discussion has been archived.
No new comments can be posted.
Exploit Kit Delivers Pharming Attacks Against SOHO Routers
|
Log In/Create an Account
| Top
| 20 comments
| Search Discussion
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Love is the process of my leading you gently back to yourself.
-- Saint Exupery
(Score: 2) by frojack on Wednesday May 27 2015, @06:06PM
Well at least routers aren't shipped with standard passwords any more. The default password is encoded to the serial number on any modern router.
The configuration capability is usually restricted to a lan port. The exception is those routers you get from any ISP. They almost always have some sort of remote management capability.
Personally, I move all routing and dns services into a linux box. I use WIFI routers as Access Points only. In the few cases that I ever have a carrier provided router/modem I set it for pass through operation and feed a linux or openbsd box configured as a router gateway.
No, you are mistaken. I've always had this sig.