Leave a comment

Beware! These routers have a serious security flaw

Beware! These routers have a serious security flaw
Image courtesy of Dreamstime.com

Cybercriminals seem to be hiding around every corner of the digital world. They're always coming up with new ways to rip us off. ATM skimmers, data breaches and ransomware are just a few of their favorite types of attacks.

With these scammers everywhere, we need to be extra vigilant to thwart their attacks. It appears they are now going after gadgets that most of us have in our homes, the router.

A vulnerability has been discovered in certain Netgear routers that allows unauthenticated webpages to pass from input directly to the command-line interface. It would allow a remote hacker to inject arbitrary commands, which would then be executed by the system. It's being referred to as security issue #582384.

Basically, if you are using one of these vulnerable routers, a hacker can almost take total control of your gadget. Scary!

Vulnerable Netgear router models

Netgear has acknowledged this vulnerability and is testing their products. Here is a list of router models that have been confirmed to contain the flaw:

  • R6250
  • R6400
  • R6700
  • R7000
  • R7100LG
  • R7300
  • R7900
  • R8000

If you own any of the routers on this list, we recommend that you stop using them immediately until Netgear comes out with a firmware update that fixes the flaw.

Netgear said they are working on a firmware update that will fix the command injection vulnerability and will release it as quickly as possible.

In the meantime, the company is providing a beta version of this firmware release for a few of the affected models. It says the beta firmware has not been tested in full and might not work for all users. It's offering the beta firmware as a temporary solution, but Netgear strongly recommends that all users download the production version of the firmware as soon as it's available.

There is currently a beta firmware version for three of the vulnerable router models. To download the beta firmware, visit the firmware release page for your model and follow the instructions. Here is a list of the models with links to their temporary fix:

Beta firmware versions for the other affected models is being worked on and will be released when available. Netgear is also testing its other router models for this flaw and if any others are discovered, they will be added to the list. Click here to check the Netgear page for updates.

We've told you about hackers targeting routers in the past and that keeping your firmware updated is important. Click here to find out how to update your firmware.

Keep checking our Happening Now section for any updates to these affected routers.

More news stories you can't miss:

New ransomware scheme urges victims to infect others

One commonly overlooked thing that should be on everyone's holiday shopping list

New Facebook feature you'll absolutely love

Next Story
Source: Ars Technica
View Comments ()
Amazon slashing prices between now and Christmas
Previous Happening Now

Amazon slashing prices between now and Christmas

Finally! Apple AirPods are now available - Here's where you'll find them
Next Happening Now

Finally! Apple AirPods are now available - Here's where you'll find them