A recently discovered botnet has taken control of an eye-popping
100,000 home and small-office routers made from a range of
manufacturers, mainly by exploiting a critical vulnerability that has
remained unaddressed on infected devices more than five years after it
came to light. Researchers from Netlab 360, who reported the mass infection late last week, have dubbed the botnet BCMUPnP_Hunter. The name is a reference to a buggy implementation of the Universal Plug and Play protocol built into Broadcom chipsets used in vulnerable devices. An advisory released in January 2013
warned that the critical flaw affected routers from a raft of
manufacturers, including Broadcom, Asus, Cisco, TP-Link, Zyxel, D-Link,
Netgear, and US Robotics. The finding from Netlab 360 suggests that many
vulnerable devices were allowed to run without ever being patched or
locked down through other means.
Read the article over at ars technica: A 100,000-router botnet is feeding on a 5-year-old UPnP bug in Broadcom chips
Comments
Post a Comment