Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

Did You Know Your Router Can be Infected?

Did You Know Your Router Can be Infected?

A new type of malware is targeting routers in what is considered a large enough threat that even the FBI is addressing it. Even worse, a router isn’t necessarily a device that you think would be vulnerable to attack from a hacker. What can you do to keep your business’ Internet access points secure from hacking attacks? Let’s dig in to the details about what the VPNFilter malware does and how you can address it.

Explaining VPNFilter
The malware in question, VPNFilter, hides in routers for both individual users and small businesses with the intention of persisting even if the device has been rebooted. VPNFilter targets devices that are Ukraine-based most of the time, but others have been known to fall victim to this as well. It’s thought that the VPNFilter malware originated from a group called Sofacy. The malware itself takes three steps to become an issue for your organization.

The first is that the malware sets itself up so that it will persist even if the device is rebooted or turned off. The second stage of the attack consists of the malware installing permissions for itself to change router settings, manage files, and execute commands. This allows the router to essentially brick itself, leading to considerable connectivity problems. The final stage of this malware lets the hackers look at the data packets passing to and from the device, as well as the ability to issue commands and communicate through the Tor web browser.

The reason why the FBI recommends resetting your router is because the second and third steps are wiped when you do so, but the first stage remains regardless.

Is Your Router Affected?
While not all routers are affected, there is still a sizeable list of confirmed contaminated devices. Some of the affected brands include:

  • Asus
  • D-Link
  • Huawei
  • Linksys
  • MikroTik
  • Netgear
  • TP-Link
  • Ubiquiti
  • Upvel
  • ZTE

For a comprehensive list of affected devices, you can see specifics for each brand at Symantec’s website: https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

How to Fix It
The best way to resolve these issues with VPNFilter is to perform a factory reset for your router, which completely deletes anything installed during the first stage of the threat. If the router’s manufacturer has administered a patch for the vulnerability, you can also install it following a factory reset so that you’ll never have to deal with this vulnerability again.

For more updates and tips on some of the latest threats, keep an eye on Total Tech Care’s blog.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Wednesday, 02 April 2025
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Business Google Network Security Microsoft Internet Email Malware Workplace Tips Backup Innovation User Tips Data Computer Mobile Devices Hardware IT Services Android VoIP Disaster Recovery communications Smartphones Communication IT Support Business Continuity Miscellaneous Smartphone Mobile Device Network Browser Small Business Productivity Collaboration Quick Tips Cybersecurity Business Management Users Windows Upgrade Phishing Managed IT Services Outsourced IT Ransomware Data Backup Windows 10 Office Server Save Money Cloud Computing Data Recovery Passwords Windows 10 Saving Money Holiday Tech Term Chrome Gadgets Virtualization Social Media Managed Service Microsoft Office Managed IT Services Automation Operating System Facebook Computers Artificial Intelligence Cybercrime Mobile Device Management Networking IT Support Hacking Internet of Things Wi-Fi BYOD Health Information Spam Managed Service Provider Office 365 Remote Telephone Systems Information Technology Alert Covid-19 Bandwidth Router Social Engineering Mobility BDR Recovery Employer-Employee Relationship Encryption Applications Remote Monitoring Big Data Law Enforcement App History Mobile Computing Data Breach Password Human Resources Money Application Remote Computing How To Mobile Office Government Data Storage Patch Management Office Tips Private Cloud Training Managed IT VPN Blockchain Apps Paperless Office Two-factor Authentication Data Security Mouse HaaS Google Drive Infrastructure Voice over Internet Protocol Avoiding Downtime Vulnerability Wireless Flexibility Windows 7 Word Marketing WiFi Gmail Bring Your Own Device IT solutions Servers Settings Data Management Entertainment Work/Life Balance Website Budget Machine Learning Virtual Reality End of Support Apple Connectivity Remote Work Education Physical Security Social Safety HIPAA User Error Sports Redundancy Meetings Keyboard Risk Management Conferencing Data Protection Hacker Scam Vendor The Internet of Things Lithium-ion battery Save Time Managed Services Display Vendor Management Cleaning Firewall Employee/Employer Relationship USB Software as a Service RMM Telephone System Staff SaaS Compliance Computing Battery OneNote IT Consultant Computer Care Update Shadow IT Current Events Legal Telephony Network Congestion Samsung Humor Google Docs eWaste Internet Exlporer Identity Theft Digital Signage Value PDF Spam Blocking Electronic Medical Records Proactive IT Procurement Augmented Reality Wearable Technology Fraud Workplace Strategy Retail Hiring/Firing Hard Drives Net Neutrality Best Practice Instant Messaging YouTube Robot Excel Help Desk Remote Worker Black Market Printing Biometrics Cryptocurrency Virtual Desktop Virus Unified Threat Management Managed Services Provider Document Management Business Intelligence DDoS Wireless Technology Comparison Computer Accessories Solid State Drive How to Downtime Audit Worker Database IT Management CES SharePoint Remote Workers Botnet Data storage Processor Automobile Business Technology IT Plan Content Management Access Control Customer Service Printer Bluetooth Environment Hard Drive Virtual Assistant Computing Infrastructure Unsupported Software Authentication Going Green Fax Server Charger Nanotechnology Laptop Emails Telecommuting Ergonomics Tablet Smartwatch Project Management Techology Sync OLED Customers Cortana Domains Development PCI DSS Virtual Machine Audiobook Digital Signature IaaS Touchpad Netflix 2FA Maintenance Two Factor Authentication Fiber Optics Employee Warranty Cabling HVAC Root Cause Analysis Google Apps Messaging Bloatware Policy Music Hypervisor Politics Advertising HBO Analysis Knowledge Skype Devices Dark mode Trend Micro Tablets Administrator Default App Enterprise Content Management Data loss Notifications SMS Entrepreneur Leadership Consultant Procedure Troubleshooting Saving Time MSP Outlook Accountants Start Menu Thought Leadership Credit Cards dark theme Shortcut Analytics Shopping Google Search Microchip IT Infrastructure Password Management Relocation Screen Mirroring Password Manager Loyalty AI Cost Management Best Available Multi-Factor Security FinTech Social Networking Books Bing Frequently Asked Questions Video Games Mobile Twitter Windows 10s WIndows 7 Social Network Search Engine Investment Worker Commute NIST Cast Business Mangement Running Cable webinar Trending Employees Emergency Employee/Employer Relationships Experience Tip of the week Smart Tech Scalability Professional Services Addiction Public Cloud Amazon Windows 365 Employer Employee Relationship Memory ISP ROI Business Owner Recycling Assessment Video Conferencing NarrowBand Sales Bitcoin Shortcuts Wiring Windows Server 2008 Practices Search Tools Cache User Amazon Web Services Point of Sale PowerPoint Personal Windows Media Player Cryptomining Safe Mode iPhone Criminal Television Supply Chain Management Monitoring Batteries Science GDPR Hosted Computing Wireless Internet Managing Stress Online Shopping Windows 8.1 Digitize Windows Server 2008 R2 File Sharing Files Public Computer Inventory Distributed Denial of Service Chromecast Specifications Customer relationships Customer Relationship Management Transportation Cameras Camera Regulations Wire Computer Fan Evernote Email Best Practices Rootkit IT Assessment Analyitcs Manufacturing Travel Programming Colocation Uninterrupted Power Supply Workers Millennials Computer Tips Benefits Managed IT Service Security Cameras Printers Biometric Security Smart Office Monitor FENG Wireless Charging Virtual CIO OneDrive Peripheral Antivirus IBM Workforce Digital Security Cameras Smart Technology Printer Server Using Data Windows 8 Virtual Private Network Flash 5G Reputation Cables IT service Streaming Media Copiers Quick Tip Content Software Tips Tech Support Supercomputer

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code