It became known that routers and ADSL modems running on firmware from Taiwanese OEM Arcadyan are at serious risk due to a new software vulnerability. The hacker attacks using the CVE-2021-20090 vulnerability were noticed by the specialists of the Bad Packets company, which works in the field of information security, and then this fact was confirmed at Juniper Labs.
The vulnerability was discovered earlier this year by Tenable researcher Evan Grant. It can be used by cybercriminals to connect user devices to a botnet in order to carry out large-scale DDoS attacks. The problem has been around for over a decade and affects at least 20 router and modem models that run firmware from Arcadyan and are supplied by 17 brands. The list of problem devices includes routers and modems from some of the largest manufacturers and ISPs, including ASUS, Orange, Vodafone, Telstra, Verizon, Deutsche Telekom, British Telekom, and others.
Note that initially the problem was not so serious, since hacker attacks using the CVE-2021-20090 vulnerability began only a few days ago. This was preceded by a detailed issue report that was posted by Evan Grant after the corresponding fix was released.
According to the available data, the vulnerability is used to bypass the authentication process on vulnerable routers and modems in order to change the device configuration. For example, enabling the telnet protocol allows you to remotely connect to devices in the future. According to Juniper Labs, hackers who in the past operated the largest botnet, Mirai, are behind the attacks on the routers.
0 Comments:
Post a Comment
Your comment and facebook share will be appreciated