08-03-2020 , 08:29 AM
How to find vulnerabilities in routers
Consumer-grade routers have always been criticized for their unreliability, but the high price tag does not guarantee high security. In December last year, Check Point specialists discovered over 12 million routers (including top models) and DSL modems that could be hacked due to a vulnerability in the mechanism for obtaining automatic settings.
Let's say your router is vulnerable and anyone on the network can access it. What consequences can you expect?
full control over the router by the attacker.
(It will be able to set and read configuration parameters, reset to defaults, and reboot the device remotely.)
Substitution of DNS addresses in the router settings for servers controlled by the cracker.
(The attacker will redirect you to phishing sites that require a bank card to be entered)
I think everyone understands that you need to monitor the security of the router, and the ShieldsUP service will help us with this.
https://www.grc.com/shieldsup This service sends up to 10 SSDP packets to your IP address and then contacts your router in an attempt to get a response from any publicly exposed and listening UPnP SSDP service.
UPnP protocols were never intended for public access to the Internet, and any Internet equipment that implements a response should be deemed defective, unsafe, and unusable. Any such equipment must be shut down immediately.
Sasha, for Promo2day.
Consumer-grade routers have always been criticized for their unreliability, but the high price tag does not guarantee high security. In December last year, Check Point specialists discovered over 12 million routers (including top models) and DSL modems that could be hacked due to a vulnerability in the mechanism for obtaining automatic settings.
Let's say your router is vulnerable and anyone on the network can access it. What consequences can you expect?
full control over the router by the attacker.
(It will be able to set and read configuration parameters, reset to defaults, and reboot the device remotely.)
Substitution of DNS addresses in the router settings for servers controlled by the cracker.
(The attacker will redirect you to phishing sites that require a bank card to be entered)
I think everyone understands that you need to monitor the security of the router, and the ShieldsUP service will help us with this.
https://www.grc.com/shieldsup This service sends up to 10 SSDP packets to your IP address and then contacts your router in an attempt to get a response from any publicly exposed and listening UPnP SSDP service.
UPnP protocols were never intended for public access to the Internet, and any Internet equipment that implements a response should be deemed defective, unsafe, and unusable. Any such equipment must be shut down immediately.
Sasha, for Promo2day.