The Cybersecurity and Infrastructure Security Agency (CISA) has recently released an emergency briefing. This is to inform the public about current threats targeting routers. Knowing these possible ways for hackers to exploit, allows companies and their cybersecurity team to protect themselves from possible danger. Additionally, being proactive can also mean less likelihood of being a victim of a breach. Hence, as a small to medium business owner, you should consult with a reliable cyber security service company to avoid such problems to strengthen your cybersecurity posture.
CISA has identified two critical vulnerabilities in D-Link and DrayTek routers. Furthermore, updates and recommendations should be applied immediately for organizations to properly secure their networks. You can get in touch with your trusted cyber security service company for assistance.
This was discovered on D-Link DIR-820 routers which let the potential attackers perform the privilege escalation remotely. These routers are end-of-life, which means they should be replaced immediately.
This affects DrayTek routers and allows the execution of code by the reception of malicious payloads. That is why there should be measures from the vendor as follows.
Researchers at Vedere Labs have recently identified 14 new flaws impacting DrayTek routers. Unfortunately, some of which are critical. These vulnerabilities are in 24 router models and leave more than 700,000 devices vulnerable to ransomware attacks as well as misuse of botnets.
As the industry market leader, the popularity of DrayTek routers attracts hackers due to the connectivity feature. Therefore, it is important to connect with a cyber security service company to help your business enhance protection against such hazards.
These vulnerabilities that are present in systems can be exploited by attackers in several ways. It includes the use of multiple systems that share weak admin credentials. As such, making them easier targets. Additionally, web interface vulnerabilities like buffer overflow can be manipulated. Lastly, the absence of proper random number generation can also lead to data leaks and further attacks.
DrayTek has patched these vulnerabilities, urging users to:
If it seems to be complicated to manage these steps, a cyber security service company can be helpful.
Routers are links to confidential information and data. Therefore, a lack of attention to security weakens networks against assaults from attackers. Here at EB Solutions, we know this too well. We advocate for early and proactive responses to strengthen your cybersecurity posture. We are a reliable and trusted cyber security service company with a team of efficient IT and cybersecurity professionals. Schedule a consultation today so we can start creating personalized solutions for your business.