Articles about Router

Google reveals OnHub WiFi router, complete with GLOWING RING

Google will shortly release its first WiFi router and has made automatic updating a frontline feature. The new "OnHub" is designed to offer a rather more pleasant experience for home users, starting with a cute coffee cup form factor and extending to an app-driven user interface. Google's even banished blinking lights [Heresy …
Darren Pauli, 19 Aug 2015

SOHOpeless: Belkin router redirection zero-day

Security bod Joel Land has reported zero-day holes in a popular model of Belkin router allowing attackers to yank cleartext credentials, spoof DNS responses, and pop admin interfaces. The Belkin N600 DB Wireless Dual Band N+ box released in 2012 and selling for around AUD$150 contains five vulnerabilities from slack randomness …
Darren Pauli, 02 Sep 2015
airplane just kidding shot

Router cockup grounds United Airlines flights WORLDWIDE

A single dodgy router managed to crash the entire United Airlines computer network, leading to the cancellation of flights across the globe. See that long line, that's @united in Boise. see any other lines at other airlines? Nope, don't fly #UnitedAirlines pic.twitter.com/PnWRcGtPJM — Jeralyn Novak (@AgCommunicator) July 8, …
Iain Thomson, 08 Jul 2015

D-Link router patch creates NEW SOHOpeless vuln

Hacker Craig Heffner says D-Link has not only failed in its bid to patch its DIR-890L router but has managed to introduce a new vulnerability instead. The Tactical Network Solutions router wrecker says D-Link's quadcopter-esque AC3200, reviewed elsewhere as " the most insane router in the history of mankind", is open to …
Darren Pauli, 16 Apr 2015
Locutus of Borg, aka Patrick Stewart aka Jean Luc Picard

Borg patches enterprise ASR router DoS hole

Cisco has closed a hole in its ASR 1000 line of enterprise and service provider-grade routers that could trigger denial of service. Attackers can exploit the hole by crafting a series of packets that cause the routers to reload and cut net services. The Borg says it has not witnessed attacks in the wild. "A vulnerability in …
Darren Pauli, 31 Jul 2015
Nikola Tesla's fake lightning, Recuerdos de Pandora on Flickr CC2.0 license

Power your temperature sensor with this BONKERS router hack

The Internet of Things world could power a lot of things with WiFi signals, if only access points broadcast all the time instead of when they've got something to say. There's a bucket of research into scavenging ambient signals to power junk stuff things, and WiFi is a popular energy source, but it's intermittent. As the …

Not-spot-busting for the home: Eero thinks tiny mesh router's a winner

A San Francisco startup has launched a tiny mesh router aiming to kill notspots and end buffering in the home. Eero features dual Wi-Fi radios (alongside Bluetooth and wired Ethernet) in a curved box around 4.75inches square. It combines a router, repeater and range extender – but additional Eeros auto-configure, creating a …
Andrew Orlowski, 03 Feb 2015

Alca-Lu cooks up 400 Gbps router interconnect

Increasing data centre interconnect requirements have prompted Alcatel-Lucent to introduce 400 Gbps line cards for its high-end routers. Manish Gulyani, product marketing veep for the company's IP Business, told The Register there are multiple aims with the launch: it eliminates kit that would otherwise be needed to interconnect …

D-Link removes fingers from ears, preps mass router patch

Domestic router Daddy D-Link is patching dangerous remote access flaws in several models of its networking gear. The patches follow a round of zero-day disclosures by Canadian researcher Peter Adkins early this week, after D-Link allegedly cut communication while he quietly disclosed the flaws. The most severe flaw allowed …
Darren Pauli, 04 Mar 2015
Cloud security image

ASUS router-popping exploit on the loose

ASUS routers contain a vulnerability that turns users into admins, researcher Joshua Drake says. The boxes could be exploited by malicious local users, but not those on the wider internet, re-rerouting all users on the network to malicious sites, among other attacks. Drake wrote in an advisory that several popular models were …
Darren Pauli, 09 Jan 2015
Routers

Fifteen zero days found in hacker router comp romp

Defcon 22 Researchers have unveiled 15 zero day vulnerabilities in four home and small business routers as part of the SOHOpelessly Broken hacker competition in DEF CON this week. Four of the 10 routers offered for attack including the ASUS RT-AC66U; Netgear Centria WNDR4700; Belkin N900, and TRENDnet TEW-812DRU were fully compromised. …
Darren Pauli, 13 Aug 2014
Pinky and the Brain

New claim: D-Link router exposes unprotected config controls to web – DNS hijackers, ahoy!

D-Link router DSL-2740R, and possible more like it, are allegedly vulnerable to DNS hijacking – which hackers can exploit to lure victims to dodgy websites and servers. According to Bulgarian security researcher Todor Donev, the flaw lies in certain builds of ZyXEL's ZynOS firmware, which is used in network hardware from TP-Link …
John Leyden, 02 Feb 2015

Router creds admin/admin? Lizard Squad thanks you

Console DDoSers Lizard Squad are using insecure home routers for a paid service that floods target networks, researchers say. The service crawls the web looking for home and commercial routers secured using lousy default credentials that could easily be brute-forced and then added to its growing botnet. Researchers close to a …
Darren Pauli, 13 Jan 2015

Rubbish WPS config sees WiFi router keys popped in seconds

Passwords within routers sold by chipset manufacturer Broadcom and another unnamed vendor can be accessed within seconds thanks to weak or absent key randomisation, security bod Dominique Bongard has claimed. The weakness relates to the implementation of WiFi Protected Setup (WPS) which allows attackers to calculate the correct …
Darren Pauli, 01 Sep 2014
cloud

Juniper shrinks its MX monster router onto a USB stick

Juniper Networks has decided small is beautiful, so the latest iteration of its MX router is a virtual router that fits on a USB stick. It's not just an SDN play: shipping a full-featured MX router licensed in per-100 Mbps or per-Gbps performance slices gives the Gin Palace a product that can be sold in much greater volume than …

Cisco's first 8 Tbps MONSTER router goes live at Telstra

Ten months after the hype first hit the interwebs, Cisco has started pumping electrons through the first live install of its NCS 6008 giant router, at Australian carrier Telstra. Back in September 2013, the Borg described Telstra as one of the customers “deploying the Cisco NCS”, a statement which in retrospect could be …

Misfortune Cookie crumbles router security: '12 MILLION+' in hijack risk

Infosec biz Check Point claims it has discovered a critical software vulnerability that allows hackers to hijack home and small business broadband routers across the web. The commandeered boxes could be used to launch attacks on PCs and gadgets within their local networks. More than 12 million low-end SOHO routers worldwide are …
John Leyden, 18 Dec 2014

Optus must hire checkbox champion after epic router, voicemail borking

Optus has escaped a financial penalty imposed Australia's privacy boss and instead must review its internal security measures after it shipped hundreds of thousands of routers with open internet ports and default credentials, opened voice mails, and marked public scores of private phone numbers. The order billed as an ' …
Darren Pauli, 27 Mar 2015

Boffins sting spooks with 'HORNET' onion router

Five academics have developed a Tor alternative network that can handle up to 93Gb/s of traffic while maintaining privacy. The HORNET system is more resistant to passive attacks than existing anonymity networks like Tor and delivers faster node speeds for a "practically unlimited" number of sources. It is the brainchild of …
Darren Pauli, 24 Jul 2015

WhatsApp founder: Believe us, internet! 'Twas a DODGY network router WOT DONE IT

WhatsApp founder Jan Koum has said that a network router caused the outage of the messaging service this weekend, just a few days after it was acquired by Facebook. Koum apologised for what he described as the company's "longest and biggest outage in years". "We are sorry about the downtime," he said. "It was caused by a …

Expired router cache sends Google Cloud Engine TITSUP

Google's Cloud Engine (GCE) has experienced Total Inability to Support Usual Performance (TITSUP) for about two-and-a-half hours. Incident 15045, as Google describes the outage, kicked off at about 22:59 on the evening of 18 February (West Coast US time) and then rolled on until 01:31 the next day. Virtual machines in the …
Simon Sharwood, 20 Feb 2015
xiaomi Mi Wi-Fi router

Xiaomi taps the HYPEGEIST with 10 pence DIY Wi-Fi router

What do you get for the geek who has everything this Christmas? Well, if you’re in China and you have 1 yuan (10p) to spare, Xiaomi has just launched in beta a self-assembly smart Wi-Fi router with a 1TB hard drive. Announced by former Android product manager Hugo Barra in a Google+ post on Monday (h/t TechInAsia), the new Mi Wi …
Phil Muncaster, 17 Dec 2013

Hardwired crypto certificate FAIL bricks Juniper router kit

Sysadmins with older Juniper Networks kit have been left scrambling to keep their networks running after a security certificate expiration bricked their boxen. The issue has been keeping mailing lists like AusNOG and J-NSP busy as users tried to work out whether it was a deliberate strategy to force people off the EOL gear – and …

The Onion Router is being cut up and making security pros cry

IBM is warning corporates to start blocking TOR services from their networks, citing rising use of the encrypted network to deliver payloads like ransomware. The advice comes in the company's latest X-Force research team report (PDF). IBM claims there were around 180,000 malicious traffic “events” in the USA between January 1 …
Linksys WRT1900AC router

Linksys's über-hackable WRT wireless router REBORN with 802.11ac

CES 2014 Networking gear maker Linksys has resurrected one of its most popular, customizable routers – the WRT54G – with a new version that takes advantage of the latest wireless technologies. The Belkin subsidiary revealed the new device, a spruced-up Wi-Fi router based on its venerable WRT54G design, at the Consumer Electronics Show ( …
Neil McAllister, 07 Jan 2014
Illustration of Barak Dayan's photonic router

New photonic router works by flipping reflective atom's lid

Quantum boffins from Israel's Weizmann Institute have demonstrated a two-input/two-output router that works entirely with single photons – no electronics required. It's not the first time a photonic router has been demonstrated, but what's different about the Israeli work is that everything is photonic: the device has two …
Facebook logo

Facebook unleashes inter-cache router code on a waiting world

Facebook has slung another slice of code into the open source world: the software that lets it sling content between caches around the world, fast enough to keep The Social NetworkTM social. First discussed last year at Usenix, “Mcrouter” handles “all traffic to, from, and between thousands of cache servers across dozens of …

ɘƨɿɘvɘЯ algo attack cracks Belkin router WPS PINs: researcher

A researcher who last year turned up weak WPS PIN protection in D-Link broadband modems has found the same problem exists on Belkin devices. The writer at embedded systems hacker hangout /dev/ttyS0, who goes by the name of Craig, says the upshot of his latest work is the same as previously: it demonstrates that like D-Link, …
Gives you connectivity

New 4G router pitched at biz bods sick to death of titsup networks

With increasing 4G coverage, mobile data is becoming a sensible option for corporates who want resilience for their company networks. This is especially true in major American cities which have more mature 4G coverage than the UK, a stark turnaround from the early days of GSM. Cradlepoint from Idaho has launched a router which …
Simon Rockman, 04 Mar 2014
Design for the  Orp 1 secure router

NSA-busting secure, open, router seeks cash and code from crowd

Australian embedded systems designer Redfish is hoping to attract funding from the crowd to market a secure routing platform that open-sources both the hardware and software to protect users from unwanted snooping. Speaking to The Register ahead of the launch, Redfish managing director Justin Clacherty said the project is …

Cisco nearly ready with next giant router

Cisco is reportedly close to pushing the start button on manufacturing for a router to surpass its current CRS-3 core router. According to Light Reading, which says it's seen a Cisco document outlining the as-yet-unannounced “CTR” router, the new iron will support 1 Tbps per 10x100 Gbps ports slot. That would put the per-slot …
A boat full of Fail

BT finally admits its Home Hub router scuppers some VPN connections

BT has coughed to a crappy glitch with its Home Hub 3A router that is blocking some VPN connections. However, the one-time state monopoly appears to have taken a long time to acknowledge customer gripes, which have been piling up for weeks. BT said it had taken a while to respond to individual complaints because it was …
Kelly Fiveash, 27 Mar 2014

ZyXEL router attack: HUNDREDS of Brit biz bods knocked offline

Updated Hackers have launched an internet attack which has hobbled the internet connections of at least 100 British businesses. An unknown group or individual thought to be based in the People's Republic used a SYN flood attack to attack the 600 and 660 models of router from Taiwanese firm ZyXEL. Sources at ZyXEL and the ISP MDNX …
Jasper Hamill, 14 Jan 2014
<coat/> <door> <door/> shirt at Cash'n'Carrion

Tenda seals shut router backdoor found by D-Link hole-prober

Chinese networking manufacturer Tenda has issued a fix that seals up a recently discovered backdoor in its wireless router kit. Craig Heffner, the same researcher who uncovered a backdoor in routers from D-Link, uncovered more secret functionality that ships with Tenda's products. Heffner discovered the flaw after unpacking …
John Leyden, 28 Oct 2013

Have a Linksys router? Now's a good time to update that firmware

Owners and administrators of Linksys home routers are being advised to update and secure their devices following reports of active attacks on a flaw present in at least two models. Researchers with the SANS Institutes Internet Storm Center have received reports of mass attacks on a remote access vulnerability in the Linksys …
Shaun Nichols, 13 Feb 2014

Boffins offer ROUTER DEATHLIST for software-defined network builders

Unless you've got fathomless pockets, a scary aspect of a software-defined networking implementation is the necessity for an infrastructure upgrade, since nobody wants to forklift every router in a big network all at once. Now, a paper co-authored by Nokia Siemens Networks' Marco Hoffmann proposes a set of algorithms to help …
Virgin Media Digital Media Centre

Got a Netgear router from Virgin Media? Change your admin password NOW

A Wi-Fi security flaw leaves Virgin Media subscribers' wireless connections vulnerable to takeover by hackers. The vulnerability, identified by IT consultant Paul Moore, means Virgin Media Superhub router/modem combo devices leak users' passwords every time they reboot. The issue arises because the Netgear-manufactured device …
John Leyden, 10 Mar 2014
Netgear ITV2000

Netgear router admin hole is WIDE OPEN, but DON'T you dare go in, warns infosec bod

Netgear has promised to release a patch next month to fix a recently discovered vulnerability that lets attackers take control of unguarded kit. Security flaws in the firmware that ships with the latest versions of Netgear's WNDR3700 wireless router mean that miscreants can bypass authentication before accessing the …
John Leyden, 25 Oct 2013
RoCE v2 stack image

Oi! You noisy servers! Talk among yourselves and stop bothering that poor router!

The group behind the RDMA over converged Ethernet standard – RoCE to its friends – is tweaking the spec to support UPD and IP in the stack. RDMA - remote direct memory access - has become increasingly important in large-scale data centres, since it lets data move between different servers' user space without having to drop down …
Cloud security image

Blackhat hack trick wallops popular routers

A cybercrime vigilante known as Kafeine says criminals are hitting thousands of victims with a hacking tool that targets more than 40 router models. The well-known hacker says the novel attacks use cross-site request forgery and exploits against new and old bugs to change router DNS settings. This bypasses the need to target …
Darren Pauli, 26 May 2015
Cloudy sky

CloudRouter now live

The collaborative open-source CloudRouter project has come out of beta. The production release of the project is announced in this PDF. CloudRouter has two network operating system flavours – CentOS 7.1 with Java 1.8, or Fedora 22. It ships with ONOS 1.2 Cardinal and OpenDaylight Lithium, and supports Docker, CoreOS, Rkt, OSv …
Borg

Photonic router vendor exits stealth-mode, sparks hypegasm

Without the obligatory hype from the "every great business starts with venture capital" press, it is an interesting proposition: that turning integrated electro-optical chips into the basis of a router yields a faster device that's smaller, uses less power, and generates less heat. That's what's being claimed by US-Israeli …
Belkin Dual-Band Travel Router

Belkin Dual-Band Travel Router

Geek Treat of the Week The premise behind Belkin’s dual-band travel router is simple: you arrive at a hotel with multiple devices capable of connecting to the internet over Wi-Fi, but there’s only one connection in the room and it’s Ethernet-shaped. The solution: this boy, which allows you to set-up a 2.4GHz and/or 5GHz wireless network in the room. …
Kenny Hemphill, 19 Mar 2012

Rackspace floats virty router and firewall into its clouds

Moving to clouds should mean breaking free of all kinds of specific hardware devices and running as much software as possible on generic virtual machines – which is why Rackspace Hosting is partnering with Brocade Communications to bring its Vyatta vRouter software to its public and private clouds. Brocade has been gradually …

High-heeled hacker builds pen-test kit into her skyscraper shoes

MILDLY NSFW A Chinese hardware hacker has hidden a penetration-testing toolkit into her high-heeled shoes. The Wi-Fi-popping platforms were forged in a 3D printer, and contain compartments to smuggle hacking hardware past strict security checks in data centres and the like, and later retrieved. The hacker and pen-tester, who goes by the …
Darren Pauli, 24 Aug 2015
padlock

D-Link: Oops! We'll slam shut that router backdoor by end of month

D-Link has promised to close its routers' backdoors by Hallowe'en, following revelations that many of its consumer-grade devices accept unauthenticated access to its admin Web page. As reported here yesterday, a researcher at /DEV/TTYS0 blog unpacked the firmware of a number of D-Link devices, finding that if a browser presented …
Chromecast ethernet dongle

Chromecast gains wired Ethernet dongle

Google's released an odd accessory for its Chromecast TV dongle: an Ethernet dongle. Chromecasts plug into a telly's HDMI port and deliver video beamed over WiFi. That arrangement usually works well, but strikes problems when WiFi goes wonky. Enter the Ethernet adapter for Chromecast, which offers a power supply, USB cable …
Simon Sharwood, 09 Jul 2015
cloud

Alcatel-Lucent buries EDGE routers in x86 server fleet

Alcatel-Lucent is the latest firm to announce that it's turning its entire routing code base into a virtual router to run on x86 server platforms. The VSR (Virtualized Service Router) is described by the company as a “suite of software applications” based on the company's non-stop routing code, and the company's planning a …

CloudRouter inches closer to G/A with second beta

The open-source CloudRouter project is getting closer to general availability, with its second beta hitting the Internet today. CloudRouter first emerged in March under the aegis of peering company IIX. The Register asked project lead Jay Turner why, in a world where routers have well over 20 years' of development, the world …

Home routers co-opted into self-sustaining DDoS botnet

Hackers have established "self-sustaining" botnets of poorly secured routers, according to DDoS mitigation firm Incapsula. The hijacked routers – located mostly in Thailand and Brazil – were easy pickings for hackers because of the use of factory-default usernames and passwords. Knowledge of these login credentials allowed …
John Leyden, 13 May 2015