Leave a comment

12 million+ routers have a critical security flaw

12 million+ routers have a critical security flaw

More than 12 million routers are affected by a scary, new security flaw. Security experts are calling it the "misfortune cookie" and hackers could use it to completely hijack any device connected to a router.

This flaw isn't limited to single brand. Older and lower-end routers from D-Link, Edimax, Huawei, TP-Link, ZTE and ZyXEL could be affected, according to information-security company Check Point. Here's what Check Point claims a hacker could do with this hack:

Attackers can send specially crafted HTTP cookies [to the gateway] that exploit the vulnerability to corrupt memory and alter the application and system state. This, in effect, can trick the attacked device to treat the current session with administrative privileges - to the misfortune of the device owner.

Routers are one of the most important types of tech that needs to stay secure. If a hacker can snoop in on your router, then they can watch all of the information that goes into and out of your computer. Luckily, this vulnerability is fixable.

The vulnerability comes because of software called AllegroSoft installed on every affected router. All that would have to happen to completely immunize your router to this vulnerability is to download and install a manufacturer-released patch.

The problem is, though, that security updates tend to come out slowly. Hackers could use this time to snoop in on any number of routers before manufacturers can get their act together and actually fix the leak.

You can find out more about this hack and a full list of all affected routers at mis.fortunecook.ie, Check Point's website and home base for information about this vulnerability.

If you aren't using an affected router, though, you might still be vulnerable to hacker attacks. Click here to find out the one simple mistake that leaves your router wide open to cyber intrusion.

Next Story
Source: The Register
View Comments ()
Inside Apple's supply chain: child labor, grueling hours, deadly mud pits
Previous Happening Now

Inside Apple's supply chain: child labor, grueling hours, deadly mud pits

Vonage app works on Android smartwatches
Next Happening Now

Vonage app works on Android smartwatches