Guru3D.com
  • HOME
  • NEWS
    • Channels
    • Archive
  • DOWNLOADS
    • New Downloads
    • Categories
    • Archive
  • GAME REVIEWS
  • ARTICLES
    • Rig of the Month
    • Join ROTM
    • PC Buyers Guide
    • Guru3D VGA Charts
    • Editorials
    • Dated content
  • HARDWARE REVIEWS
    • Videocards
    • Processors
    • Audio
    • Motherboards
    • Memory and Flash
    • SSD Storage
    • Chassis
    • Media Players
    • Power Supply
    • Laptop and Mobile
    • Smartphone
    • Networking
    • Keyboard Mouse
    • Cooling
    • Search articles
    • Knowledgebase
    • More Categories
  • FORUMS
  • NEWSLETTER
  • CONTACT

New Reviews
MS Flight Simulator (2020): the 2021 PC graphics performance benchmark review
Radeon Series RX 6700 XT preview & analysis
Corsair MM700 & Corsair Katar Pro XT Review
Guru3D Rig of the Month - February 2021
ASUS GeForce RTX 3060 STRIX Gaming OC review
EVGA GeForce RTX 3060 XC Gaming review
MSI GeForce RTX 3060 Gaming X TRIO review
PALIT GeForce RTX 3060 DUAL OC review
ZOTAC GeForce RTX 3060 AMP WHITE review
Fractal Design Meshify 2 Compact chassis review

New Downloads
GeForce 461.81 hotfix driver download
ClockTuner for Ryzen (CTR) v2.0 RC4 Download
SiSoft Sandra 20/21 download v31.12
Intel HD graphics Driver Download Version: DCH 27.20.100.9316
AIDA64 Download Version 6.32.5644 beta
FurMark Download v1.25
MSI Afterburner 4.6.3 Final Stable Download
Display Driver Uninstaller Download version 18.0.3.7
Guru3D RTSS Rivatuner Statistics Server Download 7.3.0 Final
Media Player Classic - Home Cinema v1.9.10 Download


New Forum Topics
11700K Retail Review Radeon Pro win10 Samsung 980 SSD Spotted at retailers, has a DRAMless design VBIOS modded to 1000W for GeForce RTX 3090 Hall Of Fame (HOF) Edition did not yield much NVIDIA GeForce RTX 3080 Ti to get limited for Cryptocurrency Mining Performance Also Nvidia shows signs ... Is my Rtx 3090 dying? MSI Afterburner .NET Class Library GeForce Hotfix Driver Version 461.81 Ryzen 5 3600




Guru3D.com » News » Malware Spreading Through Linksys, Netgear, TP-Link routers and QNAP NAS

Malware Spreading Through Linksys, Netgear, TP-Link routers and QNAP NAS

by Hilbert Hagedoorn on: 05/23/2018 05:39 PM | source: | 23 comment(s)
Malware Spreading Through Linksys, Netgear, TP-Link routers and QNAP NAS

There is a report going viral at the moment, a new aggressive malware dubbed VPNFilter is spreading rapidly. Cisco is spreading the news that already over half a million devices in at least 54 countries already have been infected. 

While the list may not be complete, the known devices affected by the malware called VPNFilter are Linksys, MikroTik, NETGEAR and TP-Link networking equipment in the small and home office (SOHO) space, as well at QNAP network-attached storage (NAS) devices.  While we're always a bit careful pointing fingers, I'll just quote Cisco; "Cisco’s Talos cyber intelligence unit has high confidence that the Russian government is behind the campaign, according to Cisco researcher Craig Williams, because the hacking software shares code with malware used in previous cyber attacks that the U.S. government has attributed to Moscow". 

VPNFilter allows hackers to access infected computers and devices. Then, according to Cisco, they can be used for espionage or the execution of attacks (DDoS) on other computers and networks. It is not yet clear how the devices precisely become infected however most routers and NAS servers targeted, particularly run older versions of OS software and/or have known public exploits or default credentials that make compromise relatively straightforward. 

Routers from Linksys, Mikrotik, Netgear and TP-link and NAS systems from Qnap are most susceptible, Cisco recommends that users restore the devices to the factory settings to remove the malware. We obviously recommend you to install the latest firmware on your Router and internet connected NAS units.

Source: Cisco's Talos and Reuters.




Malware Spreading Through Linksys, Netgear, TP-Link routers and QNAP NAS




« Battlefield 1 DLC In the Name of the Tsar now for Free as well · Malware Spreading Through Linksys, Netgear, TP-Link routers and QNAP NAS · Download: Radeon Software Adrenalin Edition 18.5.1 »

Related Stories

Microsoft Agrees Windows 10 upgrade was pushed too aggressively - 12/24/2016 09:28 AM
In a video interview with Microsoft’s Chief Marketing Officer (CMO), Chris Capossela, he stated that Microsoft has been too aggressive in pushing the Windows 10 upgrade. ...

Act of Aggression Ships - 09/03/2015 07:26 AM
I've been hering good thigns about this game. Eugen Systems now offers Act of Aggression, their new real-time strategy game, which is available on Steam with a 15% launch discount. They also announc...


5 pages 1 2 3 4 5


Picolete
Senior Member



Posts: 320
Joined: 2014-12-09

#5549688 Posted on: 05/24/2018 01:39 PM
It's more than likely one of the CIA cyber weapons/exploits that got stolen

sykozis
Senior Member



Posts: 21798
Joined: 2008-07-14

#5549899 Posted on: 05/24/2018 11:04 PM
https://blog.talosintelligence.com/2018/05/VPNFilter.html

Thanks for posting that. It was nice to read an intelligent response in this thread after reading all the stupid ones.

SplashDown
Senior Member



Posts: 747
Joined: 2012-05-16

#5549912 Posted on: 05/25/2018 12:02 AM
That's why I like Netgear because they're usually the first to slap on a firmware update. Especially when compared to that of linksys. I know they were first the last time some squabble came about in the interweb... But this is obviously a bit more severe it would seem.... Damn this hardware level infection shtuff....

Anyone who uses the default anything on their hardware deserves a good'ol "backdooring" if you ask me... Ya I like my Netgear, it had a couple of updates there right in a row a month or so ago, But ya no problems here.

fry178
Senior Member



Posts: 1661
Joined: 2012-04-30

#5550260 Posted on: 05/26/2018 02:11 AM
@sykozis
Intelligent response does NOT equal correct information.

And anyone questioning why another country would do this? Because they can, same way the US crippled irans nuclear program by infecting their computer software running the centrifuges.
And anyone not realising how much you can do with access to usage/personal information from +50000 local networks...

sykozis
Senior Member



Posts: 21798
Joined: 2008-07-14

#5550270 Posted on: 05/26/2018 05:22 AM
@sykozis
Intelligent response does NOT equal correct information.

And anyone questioning why another country would do this? Because they can, same way the US crippled irans nuclear program by infecting their computer software running the centrifuges.
And anyone not realising how much you can do with access to usage/personal information from +50000 local networks...
When the information is a copy/paste directly from the source of said information, it's as accurate as it can get....

5 pages 1 2 3 4 5


Post New Comment
Click here to post a comment for this news story on the message forum.


Guru3D.com © 2021