500,000 routers hacked!? Are you a victim? Coming up next on BrokenISP.
Welcome back to BrokenISP, your resource for all things tech, and internet. If you have not already done so, don’t forget to like the video and subscribe to our channel.
So this week it was announced by Cisco Talos and the Cyber Threat Alliance, that over 500,000 common household and business routers, NAS(network storage) devices, and router software, has been possibly infected with a malware.
The malware came from a Russian hacking group APT28, who is well known for the Democratic National Convention Hack of 2016… We all remember that one…
The hackers modified a virus called BlackEnergy (which was a Russian state-sponsored spy tool) and made this alternate form of malware. The first origins show a large infection pool in the Ukraine and now has propagated out to the rest of the world.
The malware can basically shut down everything internet if the devices are connected to an infected router.
So how to find out if you’re infected.
If you are running a Linksys, Netgear, TP-Link, NAS device, or a Cisco device listen up.
This is the known list of devices. There may be more:
QNAP TS439 Pro
Other QNAP NAS devices running QTS software
Mikrotik RouterOS for Cloud Core Routers: Versions 1016, 1036, and 1072
So let’s say you have one of these devices what should you do?
From what we have been told by the Cisco Talos and the Cyber Threat Alliance, is the router should be updated, and then factory reset.
Here is a sample of a router being factory reset.
After doing this you will have to set up the router like it was new, but you may be free of malware.
So that is all we have for today, thank you for watching again don’t forget to like and subscribe we love you guy, and gals and want to make sure you can get all the newest videos first!
Until next time!
We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.