1. Have a great Memorial Weekend!
    Dismiss Notice
  2. Gone Fishin'
    Dismiss Notice
  3. Week of 5/27/2017 Closing prices & Chg Over Last Wk---- Gold $1268.30-- Silver $17.32-- Oil $49.80-- USD $97.36 --
  4. "Spreading the ideas of freedom loving people on matters regarding high finance, politics, constructionist Constitution, and mental masturbation of all types"
    Dismiss Notice

It may be time to turn off your router: Netgear confirms security vulnerability

Discussion in 'Computers' started by Scorpio, Dec 19, 2016.



  1. Scorpio

    Scorpio Скорпион Founding Member Board Elder Site Mgr Site Supporter ++

    Joined:
    Mar 25, 2010
    Messages:
    23,379
    Likes Received:
    24,493
    Trophy Points:
    113
    It may be time to turn off your router: Netgear confirms security vulnerability


    Jayce Wagner,Digital Trends 9 hours ago


    [​IMG]



    A serious security vulnerability affecting a number of Netgear brand routers surfaced Friday, and it reportedly could allow hackers to seize control of your home or office network and potentially intercept your sensitive data. The vulnerability was confirmed by CERT, a federally funded service that coordinates the response to serious software vulnerabilities, reports Ars Technica.

    Netgear later confirmed the vulnerability was present in its R8000, R7000, and R6400 routers, but has not yet confirmed whether or not the R7000P, R7500, R7800, R8500, or R9000 models are also affected. According to the CERT report, users of any of the aforementioned routers should be cautious and should probably stop using the devices until a patch has been released.

    More: Has China’s futuristic, traffic-straddling bus scammed investors out of millions?

    The vulnerability is particularly insidious because of how simple it is to execute. According to Ars, the only thing you have to do as a user is to click on a malicious link, which can be easily disguised as something innocuous. The link then serves a set of instructions to your router, which will run the commands as a root user, allowing the malicious instructions to subvert your router’s security.

    Even if your router’s remote management is disabled, or is otherwise insulated from the internet, the commands will still be run by vulnerable routers, giving malicious third parties access to your local network and all the traffic that passes through it. Ars originally reported a temporary workaround that would protect you from the exploit, and the vulnerability was so severe that the best bet was to just switch it off and keep an eye on the Netgear security advisories for this particular exploit.

    Fortunately, Netgear has now responded with a firmware update for the affected routers, either a production update or a beta update. It’s highly recommended that you click on your Netgear router from the list below to download the new firmware:

    Netgear recommends in the strongest terms that you update your router. Download and install the beta software now, and then make sure to update to the production firmware when it’s available. Keep an eye on the Security Advisory page for vulnerability 582384 to see if any other Netgear routers are added to the list or if further updates are provided for the known vulnerable devices.

    Updated on 12-19-2016 by Mark Coppock: Add download links for production and beta firmware for the affected Netgear routers.

    https://www.yahoo.com/tech/may-time-turn-off-router-215115643.html
     
  2. the_shootist

    the_shootist I self identify as a black '69 Camaro Midas Member Site Supporter ++

    Joined:
    May 31, 2015
    Messages:
    11,994
    Likes Received:
    11,593
    Trophy Points:
    113
    Occupation:
    Architect
    Location:
    Cow Hampshire
    No Netgear here! Good info for those who have them
     

Share This Page