Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Did You Know Your Router Can be Infected?

Did You Know Your Router Can be Infected?

A new type of malware is targeting routers in what is considered a large enough threat that even the FBI is addressing it. Even worse, a router isn’t necessarily a device that you think would be vulnerable to attack from a hacker. What can you do to keep your business’ Internet access points secure from hacking attacks? Let’s dig in to the details about what the VPNFilter malware does and how you can address it.

Explaining VPNFilter
The malware in question, VPNFilter, hides in routers for both individual users and small businesses with the intention of persisting even if the device has been rebooted. VPNFilter targets devices that are Ukraine-based most of the time, but others have been known to fall victim to this as well. It’s thought that the VPNFilter malware originated from a group called Sofacy. The malware itself takes three steps to become an issue for your organization.

The first is that the malware sets itself up so that it will persist even if the device is rebooted or turned off. The second stage of the attack consists of the malware installing permissions for itself to change router settings, manage files, and execute commands. This allows the router to essentially brick itself, leading to considerable connectivity problems. The final stage of this malware lets the hackers look at the data packets passing to and from the device, as well as the ability to issue commands and communicate through the Tor web browser.

The reason why the FBI recommends resetting your router is because the second and third steps are wiped when you do so, but the first stage remains regardless.

Is Your Router Affected?
While not all routers are affected, there is still a sizeable list of confirmed contaminated devices. Some of the affected brands include:

  • Asus
  • D-Link
  • Huawei
  • Linksys
  • MikroTik
  • Netgear
  • TP-Link
  • Ubiquiti
  • Upvel
  • ZTE

For a comprehensive list of affected devices, you can see specifics for each brand at Symantec’s website: https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

How to Fix It
The best way to resolve these issues with VPNFilter is to perform a factory reset for your router, which completely deletes anything installed during the first stage of the threat. If the router’s manufacturer has administered a patch for the vulnerability, you can also install it following a factory reset so that you’ll never have to deal with this vulnerability again.

For more updates and tips on some of the latest threats, keep an eye on Total Tech Care’s blog.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 25 December 2024
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Business Google Network Security Microsoft Internet Email Malware Workplace Tips Backup Innovation Data User Tips Computer Mobile Devices Hardware IT Services Disaster Recovery Android VoIP communications Business Continuity IT Support Smartphones Communication Smartphone Miscellaneous Mobile Device Small Business Network Browser Productivity Collaboration Cybersecurity Quick Tips Business Management Users Managed IT Services Upgrade Phishing Windows Data Backup Outsourced IT Ransomware Windows 10 Office Server Save Money Data Recovery Cloud Computing Passwords Windows 10 Tech Term Saving Money Holiday Social Media Chrome Gadgets Virtualization Automation Managed IT Services Microsoft Office Managed Service Facebook Operating System Cybercrime Artificial Intelligence Computers BYOD Mobile Device Management Networking IT Support Hacking Internet of Things Health Wi-Fi Spam Office 365 Remote Telephone Systems Managed Service Provider Information Technology Covid-19 Alert Information Bandwidth Router Social Engineering BDR Mobility Recovery Employer-Employee Relationship Remote Monitoring Money Application Encryption Data Breach Applications App History Big Data Law Enforcement Human Resources Mobile Computing Password Apps Office Tips Training Government VPN How To Blockchain Private Cloud Paperless Office Managed IT Remote Computing Data Storage Mobile Office Patch Management Voice over Internet Protocol Website Vulnerability Budget Windows 7 Word Servers Google Drive Wireless Avoiding Downtime Gmail Data Security Settings Flexibility Two-factor Authentication Marketing Bring Your Own Device WiFi Data Management Mouse IT solutions Work/Life Balance HaaS Entertainment Infrastructure User Error Meetings Scam USB End of Support Education Physical Security Risk Management Safety Hacker Data Protection Vendor Management Sports HIPAA Redundancy The Internet of Things Keyboard Lithium-ion battery Vendor Managed Services Display Firewall Telephone System Staff Software as a Service Save Time Employee/Employer Relationship Machine Learning Virtual Reality Apple Remote Work RMM Connectivity Social Cleaning Conferencing Business Intelligence Digital Signage Audit Battery Wearable Technology Augmented Reality Worker Retail Shadow IT Hard Drives Fraud IT Management Legal Instant Messaging IT Consultant Excel Botnet Remote Worker Robot Internet Exlporer Procurement IT Plan Humor Net Neutrality Cryptocurrency Biometrics Workplace Strategy Virtual Desktop PDF Unsupported Software Help Desk Printing Comparison DDoS Charger Proactive IT SharePoint Compliance CES Best Practice Managed Services Provider OneNote Computer Care YouTube Current Events Database Business Technology Black Market Content Management Telephony Samsung Customer Service Access Control Environment Remote Workers Virtual Assistant Processor Document Management Virus Value Fax Server Authentication Solid State Drive Wireless Technology Spam Blocking How to Unified Threat Management Electronic Medical Records Downtime Hard Drive SaaS Computer Accessories Hiring/Firing Data storage Update Automobile Network Congestion Computing eWaste Google Docs Identity Theft Printer Computing Infrastructure Going Green Bluetooth Messaging Tools Cabling MSP Reputation Accountants Streaming Media Shortcut Thought Leadership Tech Support Credit Cards Policy Hypervisor Content Microchip Printer Server Television Techology Password Management Laptop Cost Management Password Manager Dark mode Trend Micro Multi-Factor Security SMS Default App Customers Social Networking Twitter Procedure Saving Time Audiobook Search Engine Public Computer Google Search NIST Transportation Touchpad Business Mangement dark theme Shopping Regulations Trending AI IT Infrastructure Computer Fan Running Cable Rootkit Smart Tech Advertising Addiction Memory Amazon FinTech Politics Bing Workers Benefits Recycling Social Network Notifications Investment FENG Wiring Practices Cache Amazon Web Services Employees Employee/Employer Relationships IBM ISP Safe Mode Smart Technology Criminal Windows 365 Flash Science Video Conferencing Consultant ROI GDPR Relocation Hosted Computing Wireless Internet Online Shopping Sales Bitcoin Software Tips Analytics Shortcuts Supercomputer Cryptomining Emails Video Games File Sharing Point of Sale Personal Sync Specifications Supply Chain Management Best Available Worker Commute Distributed Denial of Service Camera Customer Relationship Management Inventory Wire Analyitcs Evernote Monitoring WIndows 7 Batteries Experience Netflix Scalability Two Factor Authentication Programming Windows 8.1 Travel Digitize Millennials Windows Server 2008 R2 Root Cause Analysis Business Owner Printers Smart Office Music NarrowBand Wireless Charging Customer relationships HBO Knowledge IT Assessment Skype Manufacturing Search Antivirus Email Best Practices Windows 8 Workforce Data loss Virtual Private Network iPhone Security Cameras Leadership IT service Windows Media Player Troubleshooting Cables Computer Tips User Managed IT Service Outlook PowerPoint OneDrive Start Menu Biometric Security Virtual CIO Tablet Telecommuting Peripheral Screen Mirroring Project Management Loyalty Files Nanotechnology Domains Books Chromecast Cortana Digital Security Cameras Managing Stress Using Data Frequently Asked Questions Copiers Mobile 5G Windows 10s Digital Signature Uninterrupted Power Supply Quick Tip Cast IaaS Warranty Cameras Colocation Maintenance Smartwatch webinar HVAC Emergency Bloatware Google Apps Ergonomics Tip of the week Development Professional Services OLED Public Cloud Employer Employee Relationship Monitor Analysis Tablets PCI DSS Virtual Machine Administrator Assessment Devices Employee Enterprise Content Management Entrepreneur 2FA Fiber Optics Windows Server 2008

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code