Wednesday, January 07, 2009
Register  Login
  Our sponsors   
  Users currently online   
Membership Membership:
Latest New User Latest: lquillen
New Today New Today: 0
New Yesterday New Yesterday: 0
User Count Overall: 48
People Online People Online:
Visitors Visitors: 11
Members Members: 0
Total Total: 11
Online Now Online Now:
Click here to visit OS-Cubed, Inc.
Viruswarn banner
you are here: Forums  Search

Welcome to the Viruswarning forums.  All your original content has been ported to the new forums as  well as new content and additional opportunities to interact with the authors of Viruswarn.com.  You can always access old content at www.leedrake.com/forum .  You may find some formatting was lost in the conversion and the older versions of the posts to be more readable....

But at least it's all here.

Enjoy!
  Viruswarn Forums
Forums > Viruswarning Forum > Viruswarning archive
Subject: Router password vulnerability on most routers

You are not authorized to post a reply.   
Author Messages
Lee Drake
Posts:6
01/08/2008 9:39 PM  

What it is

Happy 2008!  And thanks to my Mom for forwarding the article on this new hack.

In a new rub on the "redirect you to malicious sites" deal, hackers have found a way – using simple javascript – to modify settings on millions of personal firewalls and routers.  By visiting a page with carefully crafted javascript a malicious hacker could modify the settings on your home or business router or firewall – changing, for instance, the DNS settings to point to a DNS server with false entries.  Using this method they can redirect future calls to legitimate sites to their own servers.  Thus you might BELIEVE you were really logging into Paypal or your Bank – and in fact the browser might even point to the right address in the address bar – but you'd really be logging into a site in Russia that is collecting your user name and password.

While we've encouraged each of you to get a home router – we perhaps haven't placed enough emphasis on being sure that it is secure from such tampering.  We highly recommend that you check your home router and be sure that the password is set to something other than the default.  A password should preferably be at least 7 characters long and include varied case, at least one number, and at least one symbol.

What you should do

It's highly recommended that you discover how to change your router password and change it immediately to something other than the default.   Be sure to change it to either a password you can remember, or if you feel you can't remember it – write it on a piece of tape and put that on the bottom of the router (if in a home setting).  The same is true of your wireless WEP or WPA key – set it, and print it, but don't leave it at the default.

Further references

Original article from ZDNet: http://news.zdnet.com/2100-1009_22-6159938.html?tag=nl.e550

Router home pages for looking up instructions on how to reset your password:

Linksys home page: http://www.linksys.com

Netgear home page: http://www.netgear.com

dLink home page: http://www.dlink.com

Cheers,

logo120x120.gif

www.os-cubed.com
ldrake@os-cubed.com
LinkedIn

Lee Drake
OS-Cubed, Inc.
274 North Goodman St. Suite A401
Rochester, NY 14607

Main: 585-756-2444  
Cell: 585-509-0284
Fax: 585-756-2443

 
You are not authorized to post a reply.
Forums > Viruswarning Forum > Viruswarning archive > Router password vulnerability on most routers


ActiveForums 3.6
  Register or Login


Forgot Password ?
Copyright 2006 by OS-Cubed, Inc.   Terms Of Use  Privacy Statement