It's finally happened: Hackers are coming for home routers en masse


By John Leyden


Cybercrooks are increasingly targeting routers in consumers’ homes.

Fortinet reports that attacks of this type have regularly figured as entries in its daily top 10 IPS (intrusion prevention system) detection list over the last three months since July. The security vendor reckons that home routers have become a favoured target for cybercriminals.

Hackers are hunting for known but unpatched flaws in Netcore, D-Link and Asus devices, in particular. Hacking into routers allows miscreants to break into the networks and devices behind them. Vulnerable routers were also among the components of the Mirai botnet, which became the springboard for massive DDoS attacks against the cybercrime blogger Brian Krebs and others in late August.

Fortinet’s warning is backed up by Krebs, who said that IoT devices such as routers, IP cameras and digital video recorders are becoming proxies for cybercrime.

Separately, security software firm ESET warned today that in a test of more than 12,000 home routers, 15 per cent (a little over one in seven) use weak passwords, with “admin” left as the username in most cases. One in 14 (7 per cent) of the routers tested demonstrated software vulnerabilities of high or medium severity. ®

Sign up to our NewsletterGet IT in your inbox daily


More from The Register

Apache Hadoop spins cracking code injection vulnerability YARN

Loose .zips sink chips 2: Electric Boogaloo

SoftNAS no longer a soft touch for hackers (for now)... Remote-hijacking vulnerability patched

Your files are someone else's files, too, thanks to storage bug

Git security vulnerability could lead to an attack of the (repo) clones

Best git patching y'all

OpenFlow protocol has a switch authentication vulnerability

It's old, it's everywhere and it's not likely to be fixed in a hurry

German e-government SDK patched against ID spoofing vulnerability

Alice becomes Bob

Russia's national vulnerability database is a bit like the Soviet Union – sparse and slow

By design, though, not... er, general rubbishness

One-in-two JavaScript project audits by NPM tools sniff out at least one vulnerability...

...and those devs are then applying patches, we hope

'Amnesia' IoT botnet feasts on year-old unpatched vulnerability

New variant of 'Tsunami' is a disaster waiting to happen

Dormant Linux kernel vulnerability finally slayed

Just, er, eight years later

Google's PHP API client has XSS vulnerability

Patch promised