Security Alerts & News
by Tymoteusz A. Góral

History
#1752 900,000 Germans knocked offline, as critical router flaw exploited
As many as 900,000 Deutsche Telekom customers were knocked offline on Sunday and Monday as an attempt was made to hijack broadband routers into a botnet.

Malicious hackers are commandeering vulnerable Zyxel and Speedport routers, commandeering them into a botnet which they can command to launch huge denial-of-service attacks against websites. The vulnerability exploits the TR-069 and TR-064 protocols, which are used by ISPs to manage hundreds of thousands of internet devices remotely.

In this particular case, an attack was able to fool the vulnerable routers into downloading and executing malicious code, with the intention of crashing or exploiting them. Compromised routers could then be commanded to change their DNS settings, steal Wi-Fi credentials, or bombard websites with unwanted traffic.
Read more
#1756 Secret Europol terror data found online
#1755 The Internet of Things is making hospitals more vulnerable to hackers
#1754 Muni system hacker hit others by scanning for year-old Java vulnerability
#1753 The Tor Phone prototype: a truly private smartphone?
#1752 900,000 Germans knocked offline, as critical router flaw exploited
#1751 Firefox 0day in the wild is being used to attack Tor users
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12