Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?

New Attack Hijacks DNS Traffic From 300,000 Routers 105

nk497 writes "Florida-based security firm Team Cymru said it was examining a widespread compromise"of 300,000 consumer and small office/home office (SOHO) routers in Europe and Asia. The DNS server settings were changed to a pair of IP addresses, which correspond to Dutch machines that are registered to a company that lists its address in central London. The attack highlights the flaws in router firmware, the researchers said. 'It's not new as an issue to the InfoSec community but this is one of the biggest we've seen recently as it's quite insidious,' Cymru's Steve Santorelli said, adding the hack could let the attackers conduct man in the middle attacks, impersonating your bank, for example."
This discussion has been archived. No new comments can be posted.

New Attack Hijacks DNS Traffic From 300,000 Routers

Comments Filter:
  • by DigiShaman ( 671371 ) on Tuesday March 04, 2014 @02:26AM (#46394355) Homepage

    Take SonicWALL for example. A business class router that forces you to create an admin password upon first setup. I'm guess other home routers also offer this ability in addition to the examples you've mentioned?

    At the risk of sounding arrogant and condescending (not trying to be), but most people should just let their ISP provide and manage firmware updates for them. That, or go with Apple Airport where firmware updates occur along with standard Apple updates. Point being, rather than the user having to hunt for the updates themselves, they should either be prompted to perform an easy update, or just let someone else manage the device for them. Normally if someone shits on their own machine, I could care less. But if their negligence causes them to shit all over the internet with malware, well that just isn't right.

  • by Anonymous Coward on Tuesday March 04, 2014 @06:44AM (#46394995)

    most people should just let their ISP provide and manage firmware updates for them

    Right. Because ISPs have such stellar security track records. Not to mention the staggering amount of work it would be for an ISP to support whatever weird router the client might want to use. Unless, of course, you're proposing we'd only be able to run ISP approved hardware. Now that would splendid, indeed! Oh, wait, no it wouldn't.

Nothing is finished until the paperwork is done.