Reboot router to stop Russian malware attack

Wiis, PlayStations, iPads, blogging platforms, Facebook and anything else worthy of buzz in the digital world.
Beaver
Forum God/Goddess
Posts: 5298
Joined: Fri May 04, 2001 9:57 am
Location: Building a dam in the river
Contact:

Reboot router to stop Russian malware attack

Postby Beaver » Sun May 27, 2018 8:06 am

Is this fake news? Can business insider be trusted? Seems to be a real story on Snopes. Does simply rebooting your router stop malware? Does that mean just turning it off and back on? I already have the latest firmware. I'd rather not change my password but I could. Like most people, I don't know hot to disable remote management settings.

I'm skeptical that rebooting my router will "temporarily disrupt the malware and help identify infected devices". So once I turn it back on, the malware will resume? Then why bother rebooting? And how will that help identify infected devices? Who does it help, the FBI? Once the devices are identified, what will happen? Will the FBI come to my place and replace my router?

This story seems fishy. Seems like it is a prank just trying to cause alarm and make people mess up their router settings and change passwords unnecessarily. Are the Russians messing with us?

The FBI is advising people to reboot their routers after foreign cyber criminals hacked into them
http://www.businessinsider.com/after-fo ... ces-2018-5

"The FBI urged people to reboot their devices to temporarily disrupt the malware and help identify infected devices. People should also consider disabling remote management settings, changing passwords to replace them with more secure ones and upgrading to the latest firmware."

https://www.snopes.com/news/2018/05/25/ ... er-attack/
Last edited by Beaver on Mon May 28, 2018 3:57 pm, edited 2 times in total.

Beaver
Forum God/Goddess
Posts: 5298
Joined: Fri May 04, 2001 9:57 am
Location: Building a dam in the river
Contact:

Reboot router to stop Ruissian malware attack

Postby Beaver » Sun May 27, 2018 8:13 am

I found another link about it. This one says it was Russians who spread the malware. The rest of the wording is the same. Maybe it is legit? Still seems like a strange story.

http://thehill.com/policy/cybersecurity ... -to-russia

This says it was Fancy Bear.

https://www.washingtonpost.com/news/pow ... 3f74d17131

"The DOJ attributed the hacking campaign to the group known as Sofacy, also known as Fancy Bear. While the statement did not explicitly name Russia, Fancy Bear is the Russian military-linked group that breached the Democratic National Committee in the presidential election.

“This operation is the first step in the disruption of a botnet that provides the Sofacy actors with an array of capabilities that could be used for a variety of malicious purposes, including intelligence gathering, theft of valuable information, destructive or disruptive attacks, and the misattribution of such activities," said Assistant Attorney General for National Security John C. Demers.

And FBI Special Agent in Charge Bob Johnson said: "These hackers are exploiting vulnerabilities and putting every American’s privacy and network security at risk." Johnson encouraged people and businesses to update their network equipment and change their passwords -- though he cautioned "there is still much to be learned about how this particular threat initially compromises infected routers and other devices."

https://www.digitaltrends.com/computing ... er-reboot/

Image

Beaver
Forum God/Goddess
Posts: 5298
Joined: Fri May 04, 2001 9:57 am
Location: Building a dam in the river
Contact:

Re: Reboot router to stop Russian malware attack

Postby Beaver » Thu Jun 07, 2018 10:52 am

The FBI wants you to factory reset your router. Here's how to do it
The VPNFilter malware problem is getting worse. Here's how to safeguard your home network, and a list of the affected models.
https://www.cnet.com/how-to/fbi-wants-y ... 6166441759

"Remember that FBI reboot-your-router warning in response to Russian malware VPNFilter? Turns out it's worse than originally thought, and a lot more people are going to need to do a lot more than just reboot their routers.

According to a new report from security firm Cisco Talos, the VPNFilter malware is "targeting more makes and models of devices than initially thought, and has additional capabilities, including the ability to deliver exploits to endpoints."

That means if you own one of the affected routers -- and that list has expanded to include models from Asus, D-Link, Huawei, Ubiquiti, Upvel and ZTE -- it's strongly recommended that you perform two key steps: upgrade the firmware and then factory-reset the router."

https://blog.talosintelligence.com/2018 ... pdate.html

https://www.washingtonpost.com/news/pos ... c2853d4c6d


Return to “Technology & Video Games”

Who is online

Users browsing this forum: No registered users and 3 guests