Vulnerable Wi-Fi routers lead to attacks and fake websites

It was recently discovered that millions of ADSL routers were hacked in Brazil to create a large botnet chain. This is an unprecedented move that goes to show that not even our routers are safe from attackers. Many homes and offices use Wi-Fi routers for web access today so it is important to understand the need to keep these devices protected.

Unfortunately, attackers have now come up with innovative methods to infect a router. A compromised router is dangerous because an attacker can direct a victim to fake pages that derive information and convince him to install malicious programs. Moreover, such pages can also contain drive-by downloads or malicious Java applets that can infect a system. Advanced attackers can even make use of spyware and other tools to record keyboard strokes, real-time videos through the webcam, audio recordings through the microphone and other data.

What makes a router vulnerable?

These nefarious incidents occur when an infected router leads to a malicious DNS server. Routers that are vulnerable to such attacks can be remotely accessed from the web and then programmed to direct machines to fake websites.

Malicious DNS Server

The primary cause of this vulnerability is that a majority of users do not change the default username and password for routers that they own. They simply use the default entries provided by a manufacturer instead. This username and password is required to access the configuration of the router and it can only be accessed by visiting a unique IP address that the manufacturer provides.

Moreover, security patches and fixes for router vulnerabilities are released very rarely. So if there is a vulnerability present, it takes a long time to resolve. Most users are also unaware about the need to update the firmware in their routers and this prolongs the time period for which a router can be exploited.

Steps to ensure router safety

The following steps need to be adhered to in order to prevent a router from getting hacked:

  • The default password provided by the manufacturer must be changed. The way to implement this can be learned from the router user manual or a Google search or a call to the support team.
  • If a firmware update for the router is available, it should be installed immediately.
  • If a router has a hardware firewall, it should be implemented. This Internet firewall protection can be enabled from the router settings configuration page.
  • The WAN ping feature from the configuration page should be disabled. This feature allows hackers to check if a WAN IP address is valid.
  • Security encryption like WPA2 or WPA (Wi-Fi Protected Access) must be enabled. This ensures that no party can access a WiFi connection and router without the password.

The best system protection software is essential for complete computer security, but there are certain manual steps that need to be taken as well. Attackers can only infect routers and machines if there is some form of vulnerability for them to exploit and such vulnerabilities can only be found on unpatched machines. It is strongly recommended that you upgrade to Quick Heal 2013 for protection against the latest malware threats and attack methods exploited by attackers.

Rahul Thadani

Rahul Thadani

Follow @

Subscribe
Notify of
guest
87 Comments
Inline Feedbacks
View all comments
Sameer
Sameer
8 years ago

Thanks rahul for en-lighting the Router vulnerabilities and the need to update the firmware.
Another one more attack technique on network…!!!

ABHINAV ANKUR
ABHINAV ANKUR
8 years ago
Reply to  Sameer

thanks, for your fruitful advise- Rahul..

ombir singh
ombir singh
8 years ago

Thanks rahul for en-lighting the Router vulnerabilities and the need to update the firmware

seeraj sharma
seeraj sharma
8 years ago

Thnkes ,thankes dear rahul.

Ajay
Ajay
8 years ago

thanks for the information

Naresh
Naresh
8 years ago

Thanks, Rahul, for this latest threat information. I use a wi-fi modem, and have got my user id and password changed by the service provider. Is that enough? I also use Quick Heal Internet security AV in my system.

Can you also let m know about this anti-logger software available on the net? Does it help, if installed? Something about this will also help.

When you respond, will it be possible to mail a copy to me too?

Thanks.

Amal
Amal
8 years ago

thanks

pratamesh1@gmai.com
pratamesh1@gmai.com
8 years ago

Thanks for the Info :-)) …..

Kuldeep Kumar Mishra
Kuldeep Kumar Mishra
8 years ago

thank you for information
i have ADSL Type 2 Router With WiFi

RUCHI SOLANKI
RUCHI SOLANKI
8 years ago

I RECIVE THIS MASAGE DAILY WHAT WILL I DO FOR REMOVE THIS “MALWARE AND FIEWALL” WHAT WILL I DO???PLZ GIVE ME SOME SUGGETION?? HOW CAN I PROTECT MY PC AND NETWORK

Apoorva
Apoorva
8 years ago

Thanks for the info.

B M JAWAHAR
B M JAWAHAR
8 years ago

Thanks Mr.Rahul sir, how can get firmware update me.please give your advice always.Thanks again.

Praful Tarkar
Praful Tarkar
8 years ago

One more Security measure is enabling MAC address filtering.

anant bhutoria
anant bhutoria
8 years ago

thnx for help

Rajiv
Rajiv
8 years ago

Can you confirm that Quick heal servers are malware proof? And online update must take of that..either Quickheal 2012 or 2013….!!

Mohammed Naushad
Mohammed Naushad
8 years ago

Thanks for informing.

Bhaskar Basak
Bhaskar Basak
8 years ago

Good

goku
goku
8 years ago

thanks for the info …. nice……work ……

jafar
jafar
8 years ago

please send me the license key of quick hill

v sivaramakrishna
v sivaramakrishna
8 years ago

very very thanking you

abhijit haldar
abhijit haldar
8 years ago

Thanks,,
Hey Rahul I have 27 computer in my office and it’s connected WORKGROUP,and I have WI-Fi Router.. So what is problem?
please mail me!

Manish Ruparel
Manish Ruparel
8 years ago

Rahul,

Thanks for the information. We appreciate it as it is helpful to millions out there who are not very tech savy. Great work. Keep posting such info for benefit of all.

Somesh Sharma
Somesh Sharma
8 years ago

Thanks for this important News Yesterday i face many problems with Wi-Fi

P.MANIKANDAN
P.MANIKANDAN
8 years ago

PLZ THIS PROBELM CLEAN.

punit
punit
8 years ago

Thanks for share information……..

Ankit
Ankit
8 years ago

Thanks for this important News Today. i face many problems with Wi-Fi router. thnnx. .

Thnx and best regards

ankit verma
frontier Agencies pvt.ltd.
lucknow.220005

Mahender Garg
Mahender Garg
8 years ago

thank sir for inform that us…..please solve this problums….I request you.

Thulasidas
Thulasidas
8 years ago

Your article on router vulnerability will certainly help the users to take more precautions.

khemnath sharma
khemnath sharma
8 years ago

good

Amit J.
Amit J.
8 years ago

Thanks for the imformation Rahul.. another grate security setting is that MAC ADDRESS BINDING ENABLE ON YOUR ROUTER.

shashikant
shashikant
8 years ago

Thank you Mr Rahul providing us with valuable information regarding malware.

milan
milan
8 years ago

i need this

Rajendra Joshi
Rajendra Joshi
8 years ago

I have my PC in my house with Router & I have quickheal software of total security. Should I change User ID & Password.

Rajendra Joshi.
20/10/2012

S.Prempiyaran
S.Prempiyaran
8 years ago

Thank you. Hope of the best

Bartwal
Bartwal
8 years ago

A lot pf thanks the latest threat information

imran khan
imran khan
8 years ago

thanxxx 4 tha help

RAVI
RAVI
8 years ago

THANK YOU

Dhruv
Dhruv
8 years ago

Thanks for the information

Payal
Payal
8 years ago

I want to update QHIS 12 but an error occured A dialog box appears that shows ” Unable to complete the download process due to internet disconnected from remote side please check the internet connection ” but the internet is connected i cant understand the problem please solve the issue.

Haji Khurshid Anwer
Haji Khurshid Anwer
8 years ago

Thanks for information,I sure u r realy great person,god bless you.Haji Khurshid Anwer

Rajiv Kumar Sharma
Rajiv Kumar Sharma
8 years ago

I received a mail with subject UPS member. But when I open attachment file with mail. My pc suddenly restart and Guardian antivarus give me massage that my saystem atack with virus and theft data online. I immedaitly log off my system and load the fresh window and load Quick Heal antivirus . plz suggest what happen now .

yogesh
yogesh
8 years ago

i am running a site through my thru wamp server… should i change the id pass?
i have quick heal total security installed

rishabh parashar
rishabh parashar
8 years ago

think if some one crack our password then how we will come to know

Nikhil Goswami
Nikhil Goswami
8 years ago

Hi Rahul, Thank you for details & preventive care suggested regarding Wi-fi Routers. At present we are using Quick Heal Total Security 13.00 on our system & are using Zyxel Wi-fi Router. I think we are victims of the issue. We are facing similar problems as discussed by you. We are directed to different websites & also, display of web pages of certain websites takes long time. Some websites ask us to login again & again. We did not faced such problems earlier. Our Internet Connectivity is excellent. Also, We are located in Nashik & We have observed on Internet… Read more »

abhishek agnihotri
abhishek agnihotri
8 years ago

thnx rahul

mayur
mayur
8 years ago

thanks

raaj sharma, dhanbad
raaj sharma, dhanbad
8 years ago

Rahul sir,, i think someone is trying to hack my computer, i used quick heal total security. can it protect my laptop from these type of hackers or i should have to change my antivirus software, please give me some suitable direction in my mail as soon as possible.

Thanks

Raaj computers
dhanbad-826004
Jharkhand

kishor dulal
kishor dulal
8 years ago

thanks for giving me a valuable information.i have also got problem in my pc

Ramesh kumar
Ramesh kumar
8 years ago

thanx for information help

Mayuri
Mayuri
8 years ago

Thanks for informing about this….!!

Mayuri
Mayuri
8 years ago

Thanks for informing about these viruses…..

87
0
Would love your thoughts, please comment.x
()
x