router Archives - Help Net Security

router

D-Link routers vulnerable to remotely exploitable root command injection flaw

December 8, 2020

The Digital Defense Vulnerability Research Team uncovered a previously undisclosed vulnerability affecting D-Link VPN routers. D-Link DSR-150, DSR-250, DSR-500 and DSR-1000AC …

Attackers are exploiting two zero-day flaws in Cisco enterprise-grade routers

September 1, 2020

A technical support intervention has revealed two zero-day vulnerabilities in the OS running on Cisco enterprise-grade routers that attackers are trying to actively exploit. …

New wave of attacks aiming to rope home routers into IoT botnets

July 17, 2020

A Trend Micro research is warning consumers of a major new wave of attacks attempting to compromise their home routers for use in IoT botnets. The report urges users to take …

Millions of routers running OpenWRT vulnerable to attack

April 1, 2020

A vulnerability (CVE-2020-7982) discovered in the package manager of the OpenWRT open source operating system could allow attackers to compromise the embedded and networking …

CDPwn vulnerabilities open millions of Cisco enterprise devices to attack

February 5, 2020

If you have Cisco equipment in your enterprise network – and chances are good that you have – you should check immediately which feature the newly revealed CDPwn …

Cisco fixes small business routers, kills eavesdropping vulnerability in conferencing devices

November 8, 2019

Cisco has released security updates for a variety of its products – owners of Small Business RV Series Routers, Web Security Appliances and TelePresence devices should …

Cybercriminals plan to make L7 routers serve card stealing code

September 26, 2019

One of the Magecart cybercriminal groups is testing a new method for grabbing users’ credit card info: malicious skimming code that can be loaded into files used by L7 …

Researchers uncover 125 vulnerabilities across 13 routers and NAS devices

September 17, 2019

In a cybersecurity study of network attached storage (NAS) systems and routers, Independent Security Evaluators (ISE) found 125 vulnerabilities in 13 IoT devices, reaffirming …

Routers from well-known manufacturers vulnerable to cross-router data leaks

August 19, 2019

While many organizations and home networks use a host and guest network on the same router hardware to increase security, a new study by Ben-Gurion University indicates that …

Flaws in the design of IoT devices prevent them from notifying homeowners about problems

May 7, 2019

Design flaws in smart home Internet of Things (IoT) devices that allow third parties to prevent devices from sharing information have been identified by researchers at North …

Consumer routers targeted by DNS hijacking attackers

April 5, 2019

Owners of a slew of D-Link, ARGtek, DSLink, Secutech, TOTOLINK and Cisco consumer routers are urged to update their device’s firmware, lest they fall prey to ongoing DNS …

Cisco botched patches for its RV320/RV325 routers

March 28, 2019

Cisco RV320 and RV325 WAN VPN routers are still vulnerable to attack through two flaws that Cisco had supposedly patched. #Cisco Small Business Routers still vulnerable to …

router

D-Link routers vulnerable to remotely exploitable root command injection flaw

Attackers are exploiting two zero-day flaws in Cisco enterprise-grade routers

New wave of attacks aiming to rope home routers into IoT botnets

Millions of routers running OpenWRT vulnerable to attack

CDPwn vulnerabilities open millions of Cisco enterprise devices to attack

Cisco fixes small business routers, kills eavesdropping vulnerability in conferencing devices

Cybercriminals plan to make L7 routers serve card stealing code

Researchers uncover 125 vulnerabilities across 13 routers and NAS devices

Routers from well-known manufacturers vulnerable to cross-router data leaks

Flaws in the design of IoT devices prevent them from notifying homeowners about problems

Consumer routers targeted by DNS hijacking attackers

Cisco botched patches for its RV320/RV325 routers

Don't miss

OWASP Top 10 2021: The most serious web application security risks

A new zero-day is being exploited to compromise Macs (CVE-2021-30869)

New infosec products of the week: September 24, 2021

Implementing risk quantification into an existing GRC program

The evolution of DRaaS