Slashdot Mirror

← Back to Stories (view on slashdot.org)

At Least 700,000 Routers Given To Customers By ISPs Are Vulnerable To Hacking

Posted by Soulskill on from the seeds-of-a-class-action dept.

itwbennett writes: More than 700,000 ADSL routers provided to customers by ISPs around the world contain serious flaws that allow remote hackers to take control of them. Most of the routers have a 'directory traversal' flaw in a firmware component called webproc.cgi that allows hackers to extract sensitive configuration data, including administrative credentials. The flaw isn't new and has been reported by multiple researchers since 2011 in various router models.

15 of 96 comments (clear)

  1. Run your own equipment by chuckinator · · Score: 5, Informative

    I've always run my own hardwsare for years for a reason: it gives me a buffer beyond which I know the ISP no longer has control of my home network. 2x OpenWRT routers, a managed switch in the middle, and a lightweight embedded PC running the essential network services (dhcp, dns, ntp, etc), and the IT management overhead is fairly low.

    1. Re:Run your own equipment by Njorthbiatr · · Score: 3, Informative

      Me too, since the only reason they want you to use their router is in the first place is to price gouge with rental fees.

    2. Re:Run your own equipment by Anonymous Coward · · Score: 4, Informative

      Uh no, those hotspot things require people to be a subscript, it's not pure public and unrestricted access.

    3. Re:Run your own equipment by neghvar1 · · Score: 3, Informative

      This is why I always run my own router behind the ISP's router. Create a DMZ between the 2 routers with a 255.255.255.252 subnet so that the only available IP addresses are one for the WAN port on my router and the other for the LAN port on the ISP router.

    4. Re:Run your own equipment by ckatko · · Score: 4, Insightful

      You seem to be under the assumption that your hardware, and your compiler are incapable of being attack vectors.

      http://cm.bell-labs.com/who/ke...

    5. Re:Run your own equipment by RPI+Geek · · Score: 3, Insightful
      I did this quite recently and I couldn't agree more!

      After my Linksys started dying on a regular basis, I repurposed an old laptop that had been sitting untouched for years into an OpenBSD router. After fiddling with it for a while to get the settings correct, I switched out my old Linksys and haven't had so much as a hiccup since then. The 26 days uptime is ~19 more than my average with the crappy old Linksys, at the cost of a bit more power consumption. At some point I may upgrade my hardware to something lower-power, but so far I'm calling my experiment a sucess.

      --

      - "Nobody came out that night, not one was ever seen. But Old Man Stauf is waiting there, crazy sick and mean!"
    6. Re:Run your own equipment by RabidReindeer · · Score: 5, Funny

      Well, if EVERYONE decides they'll mooch off their neightbor, it's Communism!

      And if no one actually HAS WiFi to mooch off of, that's Soviet-style Communism.

    7. Re:Run your own equipment by houstonbofh · · Score: 3, Insightful

      You seem to be under the assumption that your hardware, and your compiler are incapable of being attack vectors.

      Possible attack vectors vs known attack vectors. I guess you could also add "likely attack vectors" since they keep getting compromised, and not updated. Of course, so does user home equipment.

      The big difference is, if I own it, I can upgrade the software, and choose secure passwords. If I rent it, I have to trust that Comcast is a conscientious as I am. Stop laughing!

  2. Service backdoors by Registered+Coward+v2 · · Score: 4, Interesting

    Having been a field engineer, where I had to fix and make work the stuff the idiots who called them selves engineers doing the design, having a backdoor to access systems was very useful. Customer didn't remember the password? No problem, I still had a way into the control system. I did, however, wonder what other equipment had the same "feature?" My stuff had no public facing interface no network connection so illicit access was not an issue except maybe if a disgruntled employee decided to have some fun; but the general design approach was "we need backdoors for support reasons" and that mentality carried over as equipment became more connected and no one ever seems 2015-03-20o question it or assess the risks vs reward for such a design philosophy. Of course, no one would ever access the proprietary "Company Confidential" engineering support documentation, right? It's kept safe right here on our internal document so no one weill ever know our backdoor user is "admin" with a password of "Pass1234" and thus we can make them easy for our field support staff, who we at HQ all know are dumb knuckle dragging mouth breathers anyway, to remember.

    --
    I'm a consultant - I convert gibberish into cash-flow.
    1. Re:Service backdoors by cliffjumper222 · · Score: 3, Funny

      > no one ever seems 2015-03-20o question it or assess the risks vs reward for such a design philosophy.

      This date brought to you by the backdoor to the letter "t"!

  3. Re:And this is why... by Anonymous Coward · · Score: 3, Interesting

    Why don't you just buy a docsis 3 modem then? Stop paying for the privilege of renting a modem.

  4. Belkin N150 by Anonymous Coward · · Score: 5, Informative

    Why doesn't the OP mention that they're only talking about the Belkin N150, with various versions of the firmware prior to v1.00.08?

  5. Many routers are hacked to use a rogue DNS by Anonymous Coward · · Score: 4, Interesting

    Many of the routers in Thailand are hacked to use a DNS owned by a Lebanese company that replaces the DNS entries of ad-networks by their own ad-networks and redirect servers.

    The largest ISP hands out ZyXEL routers that are vulnerable. This is probably also happening in other countries, only for Thailand this must be already a million dollar business.

    Check the DNS entry of your router! You might not observe that you are hacked if you use an ad-blocker or hard-coded DNS in your system.

  6. Ive developed a workaround for many models. by nimbius · · Score: 3, Funny

    This is a preliminary workaround so im sure many of you will find bugs, but heres what im using:
    1. unbox the router from your ISP. Many will come with an extra CAT 5 cord. Set this aside.
    2. position the router (and wireless antennas should it come with wireless) directly above your garbage can
    3. releasing the device will cause it to fall at 9.81m/s^2 directly into the bin (NOTE: this DOES NOT WORK or may respond slowly in areas without earth mode gravity...double check first.)
    4. Wind the cat 5 cord in a pretty loop and hang it up with the rest of them.
    5. continue instructions at: https://openwrt.org./

    --
    Good people go to bed earlier.
  7. Re:And this is why... by barlevg · · Score: 3, Insightful

    Wow. You're absolutely right. They charge me $10/mo, and modems are less than $100. That's insane.