Cyber security news for all


    Hackers Use WLAN Routers And Servers To Set Up Botnets

    Hackers have published more than 500,000 passwords and IP addresses of routers, servers and IoT devices from a providers database for DDoS attacks. The data itself comes from last year and can be misused through a connection from the remote maintenance service. The data sets were published in a well-known forum for hackers after they were copied from one of the servers of the unnamed DDoS provider.

    Networks, DDoS Attacks And Destroyed IoT Devices

    Buyers of the data from the hacker forum can use the access data of the routers and servers-  to set up bot networks and use them to carry out their own DDoS attacks. Such data leaks also pose an increased risk of damage to IoT devices, as demonstrated by the malware brickerbot, which has presumably already destroyed several million unsafe IoT devices in order to prevent them from being bombarded by a bot. The malware also deletes the firewall rules and removes the network configuration before it switches off the IoT devices and thus makes them unusable. Even if network watchdogs are also supposed to protect IoT systems, the security measures here are generally not yet high as on the home desktop or mobile computer.

    DDoS attacks

    In the current case, networks claim to have informed all affected server operators promptly. At least some of the routers and servers should then have received a new IP address. On the other hand, the situation is worse with the majority of IoT devices, which are usually used privately and administered by users themselves.

    To ensure the security of your WLAN router, you should ensure that updates for the firmware are always installed promptly. In many cases, these bring fixes for security vulnerabilities. In addition, you should regularly change both the WiFi password and the login for the router configuration. The passwords that were leaked on the affected routers and IoT devices are the same from many manufacturers as in the router’s web interface. It is therefore advisable to delete the standard login here and choose a secure password – ideally one that was generated by a good password manager.

    Recent Articles

    KuCion crypto confirms 150 million dollar security breach

    Cyber criminals were able to steal from the KuCion crypto and stole coins worth millions. On the evening of last Friday, KuCion crypto noticed...

    Hungarian banks were the target of a massive DDoS attack

    Several banks and the Hungarian Telekom have been the target of a cyber attack. The attacks are said to have come in several waves...

    The source code of Windows XP is leaked

    The source code of Windows XP is currently freely accessible. The media says that data first appeared on 4chan and is currently being exchanged...

    Hackers send malicious Azure Cloud apps to Microsoft

    Microsoft has banned some Azure Cloud applications from its cloud that the company identified as part of an attack infrastructure. Microsoft describes the approach...

    Vodafone experiences a vulnerability with fatal effects

    The injected JavaScript can access the session cookies from Vodafone website and send them to a server. An attacker can take over the session...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox