Just prior to the Memorial Day holiday, the Justice Department and FBI sent out a mass communication highly recommending that everyone with a home connection to the Internet reboot their routers. This was to protect against a new Internet exploit called “VPNFilter”. If you attacked by VPNFilter, you login credentials, email address, etc. could be hacked.
Many of us in the technology industry were surprised at the announcement and skeptical that a reboot could fix anything like this. Turns out that it’s all for real. However after doing some digging, we discovered that this very real problem potentially affects a relatively small number of home based routers; about 500,000 around the world. And only certain models (mostly older routers) are vulnerable. Here’s the list that Symantec published of the affected routers:
· Linksys E1200
· Linksys E2500
· Linksys WRVS4400N
· Mikrotik RouterOS for Cloud Core Routers: Versions 1016, 1036, and 1072
· Netgear DGN2200
· Netgear R6400
· Netgear R7000
· Netgear R8000
· Netgear WNR1000
· Netgear WNR2000
At the risk of being a bit too simplistic, if you have one of these devices, unplug it and plug it back in. That doesn't entirely get rid of the vulnerability, but the router would need to be "re-attacked" for it to take affect. Also, if you know how, it would help if you reset the router to its factory default. Or if you have the latest firmware installed, even on these routers, you should be fine.
Other router models are NOT affected by the exploit, but it doesn’t hurt if you reboot them as well.
There are a lot of articles discussing this vulnerability in excruciating detail all over the Internet. If you’re concerned about the security of your home or in your office network, we’d be happy to assist. Give us a call.