Go reboot your router - NOW!

Adjust Comment Print

According to investigators, the VPNFilter malware was created by the same Russian-linked hackers who infiltrated the Democratic National Committee ahead of the 2016 USA presidential election. And what malware would be complete without the ability to be used to participate in attacking other devices too? As many as 500,000 devices in 54 countries were impacted by the malware, known as "VPNFilter" - an infection that can interrupt internet access, siphon information from users, and use devices to spread malware.

Reuters previously noted that Cisco said the largest number of infections from the VPNFilter malware were in Ukraine, which led it to believe Russian Federation was planning an attack on that country.

Below is a list of routers Symantec identified as vulnerable to VPNFilter.

A Russian malware system has infected hundreds of thousands of routers.

Russia: Only Assad’s forces should have presence along Syrian-Israeli border
Officers from Washington are as a result of have talks with Jordan and Russian Federation in regards to the destiny of the south. In the past weeks, Israel has struck what it said were Iranian targets in Syria, raising fears of a large-scale confrontation.

Maryland community 'heartbroken' after second flood in two years
The Patapsco River, located southeast of Ellicott City , experienced a 17-foot-climb in water levels over those two hours. Rescuers have found the body of the man who went missing in the Ellicott City flood, the Howard County police said.

Rockets' Paul recruiting LeBron to Houston
Durant and Curry opened as +175 co-favorites at Westgate to win the 2017 NBA Finals MVP, with Durant taking home the honors. The story of the Golden State Warriors recruiting Kevin Durant during the 2016 offseason is pretty well known.

The FBI seized a domain used to send commands to the infected devices, but it can't hurt to reboot anyway. The initial infection vector for this malware is now unknown.

According to a report from Forbes, the VPNFilter malware has been traced back to Sofacy Group, which is believed to be directed by Russia's military intelligence agency. "As our adversaries' technical capabilities evolve, the Federal Bureau of Investigation and its partners will continue to rise to the challenge, placing themselves between the adversaries and their intended victims". It could maintain a threat on the device even after a reboot, the company added. "They're created to be remotely accessed, so in a sense, these are houses with front doors where they may be locked but they're not locked as securely as we might like them to be because they have to things - bytes - in and out", said technology analyst Larry Magid.

Officials say it's a three-stage infection that is hard to catch. "However, if infected, the continuing presence of Stage 1 means that Stages 2 and 3 can be reinstalled by the attackers".

High-availability and always-on connectivity without maintenance windows or downtime has been a prized attribute of IT departments for many years, and the idea that simply power-cycling a device can fix problems has often been seen as a solution of last resort.

Comments