http://www.telegraph.co.uk/technolo...rged-turn-wi-fi-routers-several-models-found/
http://www.theregister.co.uk/2016/12/13/netgear_r7000_r6400_r8000_security/
http://www.techspot.com/news/67381-experts-warn-netgear-router-users-stop-using-devices.html
http://arstechnica.com/security/201...-hackers-to-seize-control-of-netgear-routers/
http://kb.netgear.com/000036386/CVE-2016-582384
John.
-
Tinderbox (UK) BAKED BEAN KING
-
"In the meantime, CERT offers a temporary solution that involves exploiting the flaw in a safe way by issuing a command that disables the router’s web server feature. It can be issued with the following URL:
Code:http://[router_IP]/cgi-bin/;killall$IFS'httpd
jaug1337, hmscott and Starlight5 like this. -
ALLurGroceries Vegan Vermin Super Moderator
ROFL
Dannemand, hmscott and katalin_2003 like this. -
For anyone still using Netgear routers:
Router assimilated into the Borg, sends 3TB in 24 hours
-
If I use XWRT-Merlin on an R7000, am I still affected?
-
Yeah, you gotta restrict access for remote controls if you are gonna leave them enabled. Set it to a specific IP on another non-connected network - something noone will be able to guess through brute force on your visible IP range.
-
Netgear Adds Support For "Collecting Analytics Data" To Popular R7000 Router
While it may be less siphoning than the Trend Micro inside ASUSWRT, it's still a step in the wrong direction
Netgear customers urged to turn off Wi-Fi routers after several models found to pose security risk
Discussion in 'Networking and Wireless' started by Tinderbox (UK), Dec 13, 2016.