More than 300,000 routers in homes and small businesses hacked

A security research outfit has released a report which revealed that more than 300,000 routers in homes and small businesses have been hacked.

Team Cymru, the US-based security outfit which published the report, said that the network of hacked routers is one of the biggest of its kind that has been discovered, with most of the hacked routers in Columbia, India, Italy, Thailand, and Vietnam.

Most of the hacked routers have the following common features: Owners who didn’t know how to configure their routers, insecure default settings (factory-default passwords was not an issue), backdoors in firmware, firmware version vulnerable to a known Cross-Site Request Forgery CSRF) technique, and graphical user interfaces accessible from the Internet.

The hacked router had their DNS settings modified, which is just as bad (maybe worse) than having the end-point computers themselves hacked. This image shows a heatmap distribution of the 300, 000 hacked routers.
Team Cymru 300,000 Hacked Routers

In this particular network of hacked routers, I don’t think it would have made any difference if the computers behind those routers have host-based security tools installed. But it certainly wouldn’t hurt to have the best security tools that you can get installed on your computer(s). The problem with Internet routers is that, for most users, they are an install-it-and-forget-it-device. I think asking users to reset their Internet routers often might not be such a bad idea.

Details about the 300,000 hacked routers are available in this PDF file.

Related Posts

Test KDE Frameworks 5/Plasma Workspaces 2 using Project Neon 5 ISO If you are using a Linux desktop computer that's running the KDE desktop, it's likely that you are running a KDE 4.11 series, either version 4.11.2 or...
SkyJack software can hijack any drone, Prime Air drones included SkyJack software and a companion drone can be used to hijack and take command of nearby drones. I think a certain country in the Middle East has done ...
Silent Mail, FreedomMail or Lavamail. Whatever it’s called, it will offer the same b... Dark Mail alliance is the non-profit group formed by the leaders of Silent Circle and Lavabit. Silent Circle offers a suite of secure, communicatio...
Open source key to software re-use of public administrations "Free and open source software enables more effective actions, with a very low cost, when financing small projects for public administrations", says O...
RAPIRO: The Raspberry Pi-powered robotics kit RAPIRO is a robot and a robotic kit designed by Shota Ishiwatari, the founder of It is designed to work with a Raspberry Pi, a credit ca...
Android Ice Cream Sandwich ported to x86 tablets, netbooks and notebooks Linpus Technologies, Inc., a Linux software solutions provider based in Taipei, Taiwan, just announced that they have ported Ice Cream Sandwich, the l...

We Recommend These Vendors

Launch an SSD VPS in Europe, USA, Asia & Australia on Vultr's KVM-based Cloud platform starting at $5:00/month (15 GB SSD, 768 MB of RAM).

Deploy an SSD Cloud server in 55 seconds on DigitalOcean. Built for developers and starting at $5:00/month (20 GB SSD, 512 MB of RAM).

Leave a Comment

Your email address will not be published. Required fields are marked *