Routers do not allow criminals to access connected devices | routers

Uncategorized



[ad_1]

At least 45,000 routers worldwide have been affected by an attack using a new version of the EternalBlue vulnerability, called EternalSilence. This security breach, unveiled last year, exploits the UPnP (Universal Plug and Play) feature of vulnerable routers to provide access to the user's local network by unlocking ports 139 and 445.

READ: The keystrokes router affect Brazilians;

EternalBlue has been used for many years by the espionage services of the US National Security Agency (NSA) and targets primarily older routers. The information was released by researchers and security experts at Akamai last Thursday (29).

Want to buy a cell phone, a TV and other products at a discount? Older and Vulnerable UPnP Routers May Be the Target of an EternalSilence Attack – Photo: Reproduction / Pond5 "title =" Older and Vulnerable UPnP Routers May Be the Target of an EternalSilence Attack – Photo: Reproduction / Pond5 "src =" data: image / jpeg; base64, / 9j / 4AAQSkZJRgABAQAAAQABAAD / 2wBDAAMCAgMCAgMDAwMEAwMEBQgFBQQEBQoHBwYIDAoMDAsKCwsNDhIQDQ4RDgsLEBYQERMUFRUVDA8XGBYUGBIUFRT / 2wBDAQMEBAUEBQkFBQkUDQsNFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBQUFBT / wgARCAAQABkDASIAAhEBAxEB / 8QAFwAAAwEAAAAAAAAAAAAAAAAABAcIBf / EABUBAQEAAAAAAAAAAAAAAAAAAAID / 9oADAMBAAIQAxAAAAFpBzTkmdRkyOyBT EABwQAAEEAwEAAAAAAAAAAAAAAAEAAgMEBQYTFP // / // // ++ aAAgBAQABBQKFxLZIAVTY6nV7BP2e2p8 VVMh2veor xAAYEQADAQEAAAAAAAAAAAAAAAAAASECE aAAgBAwEBPwHqzLlP / 8QAFxEAAwEAAAAAAAAAAAAAAAAAAAITIf / aAAgBAgEBPwGIyaf / xAAhEAACAQMDBQAAAAAAAAAAAAABAgADBDERISIyQVGBgv / aAAgBAQAGPwKeDAlV1ZtSdcd5mcr9vTTlc1H + mlAEt1jczM // xAAcEAACAgIDAAAAAAAAAAAAAAAA AEAQEhQWFxkbH / 2gAIAQEAAT8hRGPbnFJWZqTZyxJrDNXUMeD l / wAxRAYGz2f / 2gAMAwEAAgADAAAAEKXf / 8QAFxEBAQEBAAAAAAAAAAAAAAAAAQAxEf / aAAgBAwEBPxAXBnw5f EABYRAQEBAAAAAAAAAAAAAAAAAAExAP // / // aAAgBAgEBPxBA01g3f EABsQAQADAAMBAAAAAAAAAAAAAAEAESExQXHx / 9oACAEBAAE / ELIxVcRDdLaZfnsaXWmBQUl8Z3xPokuQzb6bLS01WHX2oDAwVQpXtX7PrJ // 2Q == "/> <img clbad =" content-media__image picture "itemprop =" contentURL " alt = "more and vulnerable UPnP routers may be the target of attack EternalSilence – Photo: Play / UPnP routers older and vulnerable may be the target of attacks EternalSilence – Photo: Playback / Pond5" data- src = "https://s2.glbimg.com/41Dcx6IR8pE8Q9a1MDUVlcBnQJE=/0x0:1bad88/984×0/smart Filters UPnP is the acronym for" Universal Plug and Play ", a technology created to make devices work automatically, without the need of a manual installation. In some older routers, the implementation of the resource is prone to failures, which allows you to open network ports to the outside.

The router functions as a sort of "gateway" through which data from the Internet reaches or leaves your network to the world. An open door indistinctly on the device can leave your network, including all the equipment that is part of it, completely exposed to the action of hackers.

If successful, the attack opens the 139th and 445th ports of the network to the outside world, giving intruders the ability to view network devices, such as mobile phones and computers. In some cases, the hacker may be able to hack these devices and even intercept data.

Experts monitor the use of such attacks to target botnets and prepare for DDoS attacks – one of them, detected two weeks ago, totals 100,000 machines – according to Akamai, the scattered volume of attacks seems destined to expose networks that would initially be completely inaccessible.

<img clbad = "content-video__placeholder__thumb" src = "https://s01.video.glbimg.com/x720/5000056.jpg" alt = "How to set the pbadword for your Wi-Fi router [19659010AccordingtotheresearchersthepbadwordoftheWi-FirouterOnabaseof35milliondevices8%ofthemwillpresentadegreeofvulnerabilityrelatedtoUpnPsupportabout280000Akamaiattractsl'attentiontothefactthatthe45000compromisedrouterscorrespondtothisdayAbout17milliondevicebadposedsuchascomputersandmobilephonesbutthecompanydidnotdisclosethebrandsofroutersnorthecountriesinwhichtheattackstookplace

However, the security company has no way of checking what is happening.In the context of each of the infected networks.Thus, it is harder to estimate the types of damage that hackers have caused or the purpose of the action. & # 39; expert evaluation, these exposed networks can be used as vectors of even more aggressive attacks involving ransomware in the future. In addition, the risks of intrusion and interception of data are more obvious.

How to Avoid EternalSilence

Exploring the EternalBlue Method Helps Explain the Extent and Speed ​​of WannaCry in 2017 - Photo: Reproduction Exploring the EternalBlue Method Helps Explain the Magnitude and Speed ​​of WannaCry in 2017 – Photo: Reproduction

According to researchers, new routers must be protected from attack. However, older models are the most vulnerable. Since the Antivirus is not able to detect the malicious code running on your router, the best solution is to restart the computer to the factory settings, and then to completely stop the UPnP feature.

Despite this solution, experts are very cautious about very old equipment: it may be time to buy a new router, preferably launched after the discovery of EternalBlue. Another important precaution is to always make sure your equipment runs on the latest firmware from the manufacturer. This recommendation is also important to protect against other forms of attack and also applies to systems and platforms used on your devices, such as mobile phones and computers. Akamai further suggests formatting devices that may have been exposed to the attack.

EternalBlue is a hacking tool created by the NSA that uses vulnerabilities in Windows. In April 2017, a group published its source code on the Internet, basically telling the world how to conduct the attack. In a few months, the first big shots using EternalBlue began to appear, as was the case with WannaCry.

[ad_2]
Source link

Powered by https://naaju.com/brazil | Designed by Naaju
© Copyright 2024, All Rights Reserved