Feeds

Articles about Router

D-Link hole-prober finds 'backdoor' in Chinese wireless routers

Security researchers say they have discovered a hidden backdoor in wireless routers from Chinese hardware manufacturer Tenda. Craig Heffner, the same researcher who uncovered a backdoor in routers from D-link, found the latest problem. He uncovered the functionality, which ships with Tenda's products, after unpacking firmware …
John Leyden, 22 Oct 2013

Shuttleworth: Firmware is the universal Trojan

Canonical boss Mark Shuttleworth has called on the world to abandon proprietary firmware code, calling all such code “a threat vector”. In this blog post, Shuttleworth makes the case that manufacturers are simply too incompetent, and attackers (including government security agencies) too competent, for security-by-obscurity in …
bug on keyboard

D-Link FINALLY slams shut 'Joel's backdoor'

Better late than never: D-Link has issued the promised patch that closes an administrative backdoor in its SOHO broadband routers. When the vulnerability was first discovered, the vendor promised to patch it by the end of October. The patch has now been issued here. If an attacker set their browser user agent string to read …
Qualcomm Atheros hybrid home network

Don't fret over SOHO routers and Heartbleed. But yeah, there's LOADS to fear on home kit

The infamous Heartbleed bug doesn't affect home routers in practice, according to new analysis by security researchers at TripWire. The infosec vendor nevertheless warned that "critical security flaws" are "endemic" to small office/home office (SOHO) routers. TripWire came to this conclusion after revisiting earlier research on …
John Leyden, 09 May 2014

Vulnerability leaves Cisco small biz routers wide open to attack

A number of Cisco networking products for small businesses contain critical vulnerabilities that could allow attackers to gain root access to the equipment, the networking giant has warned. The affected products include the WAP4410N Wireless-N Access Point, the WRVS4400N Wireless-N Gigabit Security Router, and the RVS4000 4-port …
Neil McAllister, 14 Jan 2014

Plusnet wants resellers' SME customers and is willing to pay

Biz broadband and calls provider Plusnet has called on distie DMSL to muster dealers that want to flog its services to SMEs weeks after the latest web wobble. The timing on recruitment could be better for the Sheffield-based ISP following an outage on 4 March that downed services for an hour. Connectivity wholesaler DMSL will …
Paul Kunert, 19 Mar 2014
Play-Fi video

Audio tech upstart DTS takes on Wi-Fi speaker juggernaut Sonos

Audio tech supplier DTS is taking on Sonos’ wireless speakers with its Play-Fi tech, which it claims employs open and lossless audio technology. DTS doesn't make its own kit, but rather develops and licenses its technology to OEMs who sell consumer brands. The latest OEM to jump aboard the DTS ship is the Fine Sounds Group with …
Chris Mellor, 25 Jul 2014
hands waving dollar bills in the air

Cisco 120Gbps router rumored

Cisco is rumored to be cooking up a new carrier core router to outpace Juniper's speedy T1600. But it seems that issues with the supporting application-specific integrated circuit (ASIC) design may delay the Cisco's telco router rollout by up to a year. The new MSC120 Cisco router will become heir to network giant's Carrier …
Austin Modine, 02 Feb 2010

AdaptiveMobile joins Chipzilla's SDN club

Dublin-based AdaptiveMobile has joined Intel's Network Builders software defined networks-network function virtualisation (SDN/NFV) program. The company says its participation in the program will deliver “NFV-ready service assurance”. AdaptiveMobile's announcement notes that its software was already designed to run on generic …
802.11ac routers

Top Ten 802.11ac routers: Time for a Wi-Fi makeover?

The once-sage advice that wired networking was the only way to guarantee suitable speeds for streaming HD video, large file transfers, or buffer-free HD video playback no longer holds true – or does it? The latest wireless standard, 802.11ac, delivers significantly improved speeds over 802.11n thanks to greater bandwidth and …
Synology DS410

Ransomware attack hits Synology's NAS boxen

Synology Diskstations and Rackstations are being hit by malware dubbed Synolocker. The malware is a similar to the infamous Cryptolocker ransomware in that it encrypts all your files and then demands a ransom to unlock them. The vulnerabilities that enable the malware appear to rely on hard-coded passwords to recommended …
Trevor Pott, 05 Aug 2014
Solwise Net-3G-A10

Solwise Net-3G-A10 HSPA Wi-Fi router

So the Solwise-sold, made by HameTech A10 isn't a sexy looking as Three's MiFi, but it's the same proposition: a 3G modem with a built-in Wi-Fi router. Solwise Net-3G-A10 It's an easy way to bring internet connectivity to devices that lack USB ports or have no cellular links of their own. Or, like me, you travel overseas and …
Tony Smith, 02 Sep 2011
cloud

Out of stealth, Saisei pitches IP flow controller

Year-old startup Saisei is putting forward an SDN management framework it reckons can free up as much as half of the network performance that now gets sucked up by various overheads. The outfit's FlowCommand network performance enforcement (NPE) software is designed to take IP packet queuing and scheduling out of the performance …
Grumpy cat

What do we want? CAT VIDEOS! How do we get them? TOR!

The Onion Router project has fired back at the National Security Agency, after it emerged that those who use the network – and read Linux magazines – are considered worthy of surveillance. Tor's blogged riposte points out that “Just learning that somebody visited the Tor or Tails website doesn't tell you whether that person is a …
Simon Sharwood, 04 Jul 2014
Sennheiser SKM 900 wireless microphone

Cisco's reverse mentoring plan helps middle-aged managers grok Gen Y

Cisco has implemented a reverse mentoring program that sees its younger and less-experienced staff advise its managers, the better to help the latter develop strategy. Sabrina Lin, Cisco's veep for commercial business in Asia Pacific, Japan and China, revealed the program at the at the Canalys Channels Forum in Bangkok a while …
Simon Sharwood, 21 Nov 2013
EE 4G banner

EE rolls out Brightbox fix... but it WON'T stop packet sniffers, DNS meddlers – infosec bod

EE is rolling out an update to its BrightBox routers to fix a series of vulnerabilities which allowed hackers to access the devices by a simple copy and paste operation. Scott Helme, the security researcher who first discovered the flaws, told El Reg the latest update resolves two of the three most serious problems he found. …
John Leyden, 07 Feb 2014
bug on keyboard

Hacker backdoors Linksys, Netgear, Cisco and other routers

The new year begins as the old year ended: with yet more vulnerabilities turning up in consumer-grade DSL modems. A broad hint for any broadband user would be, it seems, to never, ever enable any kind of remote access to the device that connects you to the Internet. However, the hack published by Eloi Vanderbeken at github, here …
Hyperbolic map of the internet. Credit: Nature Communications

CAIDA to survey peers, colo sheds and ISPs for new map of internet

CAIDA – the group of router boffins established at the University of California to research 'net traffic and look for solutions to threats to Internet stability – has given itself a new name. If you're thrifty with your letters and don't want to learn a new acronym, you'll be pleased to know that the name change is from the …

Malware-flinging Linksys vulnerability confirmed as a HNAP1 bug

The worm called “The Moon”, which began spreading between Linksys home broadband kit last week, has been confirmed as a problem with the devices' HNAP1 implementation, and an exploit has been made public. The exploit was posted to Exploit-db.com by user Rew, who said this Reddit discussion meant the “cat's out of the bag”. …
BT Home Hub 3

BT Home Hub 3 ADSL Wi-Fi router

Everything is wireless these days, it seems. It’s convenient, effective and liberating not to be tied down to a laptop or whatever with wires. But if you find your Wi-Fi behaves erratically, dropping connections or stuttering to a stop when you’re streaming video, say, you’ll know it’s not always plain sailing. And then when you …
David Phelan, 24 Feb 2011
channel

Juniper bakes 250Gbps core router chip

Juniper Networks has said it has new silicon in the oven that will soon let its T Series core routers reach a full duplex per-slot capacity of 250 gigabits per second. On Thursday, the company said trials with products using the chipset, an in-house affair fabbed at 45nm, are penned for the second half of 2010 and will be …
Austin Modine, 04 Feb 2010

OpenWRT gets native IPv6 slurping in major refresh

The embedded Linux distro OpenWRT has updated native IPv6 support – allowing devices to automatically pick up an IPv6 address, as well as an IPv4 one, from an ISP if possible. The release candidate is code-named “Barrier Breaker” and runs the Linux 3.10 kernel. OpenWRT 14.07's improved IPv6 support with DHCPv6 is useful for …
Today's bloated CPE

WTF is ... Virtual Customer Premises Equipment?

As software-defined networking takes off, it's become the basis of a parallel development: network function virtualisation. NFV is a boon to the data centre. For decades now, giants and minnows of the networking industry alike – Cisco and all of its competitors, along with anybody offering firewalls, WAN optimisation devices and …
iiNet Logo

iiNet slurps system integrator Tech2 Group

Australia's third-largest internet service provider iiNet has let it be known that it has acquired 60 per cent of the Tech2 Group , an outfit that provides consumer-and business-grade IT services. iiNet's ASX statement (PDF) announcing the deal says it “provides a complementary focus on customer service, a new sales channel, …
Simon Sharwood, 05 Sep 2014
EE 4G banner

EE BrightBox routers can be hacked 'by simple copy/paste operation'

BrightBox routers supplied by UK telco EE as standard kit to its broadband and fibre customers are riddled with security shortcomings that make the devices hackable, a UK security researcher warns. Scott Helme warns that security vulnerabilities expose WPA encryption keys, passwords and ISP user credentials. Hackers might also …
John Leyden, 20 Jan 2014
The VoCore COM

DIY IoT computer smaller than a square inch

A Chinese crowd-funded effort has produced what could be – for now, at least – the smallest Linux computer-on-module so far, and with its research effort oversubscribed, says it will be shipping its “VoCore” devices by October 2014. The 25 x 25mm embedded system isn't designed for fat compute loads, but at a list price of $US20 …

ASA slaps down BT over 'misleading' broadband claims

Those toothless tigers gummy stripy cats at the Advertising Standards Agency have given BT a talking to over "misleading" claims about overall broadband speeds, outpacing packages from both Sky and TalkTalk. The Brit telco made an ad headed "Official", claiming it could "Superpower your broadband". It contained a cartoon man …
Paul Kunert, 04 Dec 2013
Edward Snowden

Snowden on NSA's MonsterMind TERROR: It may trigger cyberwar

Rogue NSA sysadmin Edward Snowden says his former employer has developed software that will automatically attack foreign computers deemed to be a threat – without checking in with a human first. The system, dubbed MonsterMind, is designed to detect strikes against key US servers and block the assaults as quickly as possible. But …
Iain Thomson, 13 Aug 2014
The Register breaking news

Linksys vuln: Cisco responds

Cisco has identified the Linksys router affected by the vulnerability published by DefenseCode on January 14. In an e-mail to The Register, the vendor says its review shows the vulnerability only exists in the WRT54GL home router. “Following our assessment of information recently released by DefenseCode, we have confirmed a …
The Warlipiri Education and Training Trust

Help us out readers: How would you sniff and store network traffic?

Having successfully averted the XP-ocalypse at the Wirliyatjarrayi Learning Centre in the remote Australian desert community of Willowra, Vulture South's operatives felt pleased with themselves. As regular readers will know, our encounter with the facility, run by the Batchelor Institute of Indigenous Tertiary Education, led to …
xfinity wifi

Comcast Xfinity evil twin steals subscriptions

A senior security research engineer at LogRhythm Labs has demonstrated how to steal Comcast Xfinity subscriptions by masquerading as a wireless access point. Greg Foss (@Heinzarelli) published code that could be deployed on a Wifi Pineapple to replicate one of Comcast's million customer-run hotspots across the US. Comcast …
Darren Pauli, 24 Jun 2014
Heatmiser PRS-TS WiFi RF Thermostat

Heatmiser digital thermostat users: For pity's sake, DON'T SWITCH ON the WI-FI

Digital thermostats from Heatmiser are wide open to takeover thanks to default login credentials and myriad other security flaws. The UK-based manufacturer has promised to develop a fix. Pending the arrival of a patch, users are advised to disable the device's Wi-Fi capability. The security flaws were discovered by Andrew …
John Leyden, 24 Sep 2014

How long is too long to wait for a security fix?

Synology quietly released version 4.2-3250 of its DiskStation Manager (DSM) operating system this month. This squashes critical security bugs in version 4.2 of DSM – bugs that were fixed in version 5.0 in June, so consider this a back port. Version 4.2 is old but still in use in various models, such as the DS109. The update got …
Trevor Pott, 25 Jul 2014

HDMI, thy end is near: Qualcomm's Wilocity gobble will let mobes, tabs beam 4K vid to TVs

Qualcomm has snapped up WiGig pioneer Wilocity so it combine traditional Wi-Fi and super-fast 802.11ad on a single chunk of Snapdragon silicon for mobile gadgets. "WiGig will play an important role in Qualcomm's strategy to address consumers' increasingly sophisticated smartphone, tablet and computing requirements," said Amir …
Iain Thomson, 03 Jul 2014
Bus jam

MIT boffins build 36 core processor with data-traffic smarts

Researchers at MIT say they have successfully built a 36-core processor that uses an internal networking system to get maximum data throughput from all the processing cores. MIT's new multicore, multi-bus, chip MIT's new multicore, multi-bus chip The design, unveiled at the International Symposium on Computer Architecture, …
Iain Thomson, 23 Jun 2014
Spam

SPAM supposedly spotted leaving the fridge

It's still silly season, it seems. Tell the world that a bunch of small business broadband routers have been compromised and recruited into botnets, and the world yawns. Add in a television or a multi-media centre, and there's a faint flicker of interest – perhaps a raised eyebrow, but not much more. Add in the word “ …

Apple stabs Heartbleed bug in AirPort Extreme, Time Capsule gear

Apple has posted a security update to address instances of the Heartbleed security vulnerability in its AirPort router and file back-up gadgets. The company said that a firmware update for the AirPort Extreme and AirPort Time Capsule home network appliances would address the infamous CVE-2014-0160 OpenSSL security vulnerability …
Shaun Nichols, 24 Apr 2014

NBN Co tells iiNet: Use Broadcom chips in VDSL routers

iiNet, Australia's third-largest internet service provider in terms of subscriber numbers, has been told by NBNCo that it should consider only Broadcom chipsets for its future VDSL modems. Simon Watt, head of iiNet's labs, told The Register the advice was not prescriptive, but given the lead time required to develop customer …
Simon Sharwood, 24 Feb 2014
One of New Zealand Post's commemorative Hobbit coins

Nude celeb pics wrongly blamed for DDOS at New Zealand's largest ISP

New Zealand's largest ISP, Spark, has spent the weekend fighting off a DDOS incorrectly assumed to have a connection with last week's nude celebrity picture scandal. The ISP hit trouble last Friday, when it Tweeted that some of its subscribers had become infected with malware that was flooding its DNS servers and making it hard …
Simon Sharwood, 08 Sep 2014
Picture by Afonso Lima

The internet just BROKE under its own weight – we explain how

On Tuesday, 12 August, 2014, the internet hit an arbitrary limit of more than 512,000 routes. This 512K route limit is something we have known about for some time. The fix for Cisco devices – and possibly others – is fairly straightforward. Internet service providers and businesses around the world chose not to address this …
Trevor Pott, 13 Aug 2014

Bloke hews plywood Raspberry Pi tablet

It's a tip of the hat today to Michael Castor, who caught our eye with his attractive fusion of plywood, carbon fibre and Raspberry Pi, dubbed the "PiPad". Top view of the PiPad Michael's plan was to build an "all-in-one system that was usable, portable, and Linux-based", but which also "had to look good". Furthermore, it …
Lester Haines, 14 Jan 2014
TOR Logo

IM demo for TOR coming soon

The TOR project is about to join the world of secure instant messaging, laying out a roadmap that would see its first code for a new project delivered by the end of March 2014. The first aim of the Tor Instant Messaging Bundle will be to get experimental builds happening with Instantbird providing the messaging interface. Early …

AVG on Heartbleed: It's dangerous to go alone. Take this (an AVG tool)

It's the bug that keeps on bleeding. Thousands of websites are still vulnerable to Heartbleed more than a month after a patch for the password-leaking OpenSSL bug was released, we're told. Researchers at AVG’s Virus Labs said they scanned Alexa's league table of the top 800,000 sites in the world, and found 12,043 (1.5 per cent …
John Leyden, 20 May 2014
Great Wall of China

Beijing to Washington: Ratted-out routers not welcome here

China has taken revenge on the USA for its Huawei ban and router-ratting actions alleged by Edward Snowden, by announcing a new “vetting” process for foreign technology providers. The news emerged in Xinhua, a party-controlled Chinese news organ that reports State Internet Information Office spokesperson Jiang Jun as saying “For …
Simon Sharwood, 23 May 2014

Brit colo outfit Alphadex offline all weekend after attack

British data centre provider Alphadex has been hit by a weekend-long outage. Users report that everything they host with the company has gone down, along with Alphadex's own control panels and management interfaces. Details of the incident are sketchy, with Alphadex offering only Tweets to explain the situation. Customers first …
Simon Sharwood, 02 Mar 2014

Sluggish Cisco damping Ethernet market, say kit-counters

The bread-and-butter enterprise networking market, Ethernet switches and routers, had a dreadful first quarter in 2014, but just how bad depends on which analyst you listen to. IDC says the Q1 value was $US5.2 billion, while Dell'Oro Group was a little more pessimistic, putting it at $US5 billion. The two companies estimates of …
Angry old man

Order and shipping woes to hit Juniper in early summer, warns distie

If you have a sudden urge to buy Juniper Networks kit around the beginning of July then you better get your orders in now to "avoid any shipping delays", we're told. Juniper distributor Arrow ECS has contacted the great unwashed in its UK reseller/integrator customer base to warn of the potential void as the switch and router …
Paul Kunert, 12 May 2014

Belkin preps DIY NAS wireless router

Belkin has upgraded its top-of-the-line 802.11n Wi-Fi router with a USB port and the ability to hang a hard drive off the WLAN. The N+ Wireless Router provides all the customary router features for sharing a broadband link between wire-connected and wireless computers and other gadgets. Its Ethernet ports now operate at Gigabit …
Tony Smith, 14 Jul 2008

Renegade NSA, GCHQ spies help fix Tor vulns, claims project boss

GCHQ and NSA cyber-spooks secretly report vulnerabilities in Tor so they can be patched, a leading developer of the anonymity-preserving software has claimed. Andrew Lewman, the Tor Project's executive director, claimed that some spies place a higher priority on fixing flaws in the privacy-preserving technology than keeping …
John Leyden, 22 Aug 2014
The Register breaking news

Linksys router ripe for remote takeover

A security researcher has discovered a flaw in a popular Linksys router that could allow attackers to remotely hijack the device using its web management console. The Linksys WAG54G2 fails to properly inspect addresses typed in to browsers accessing the management console, allowing attackers to inject powerful shell commands …
Dan Goodin, 01 Jun 2009