Currently set to No Follow
sections
GineersNow community
Computer, Computer, Consumer Electronics, Electronics, Gadgets, Industries, Software, Technology, Telecom

32,000+ WiFi Routers for Gamers are in Trouble

Home & Small Office Wireless Routers Exploited to Attack Gaming Servers

9.9kviews
88
2 shares, 88 points

Wifi Routers for Gamers

 

Unit 42 (the Palo Alto Networks threat intelligence team) has released new research unveiling that it discovered an updated Gafgyt variant attempting to infect IoT devices, specifically small office/home wireless routers of known commercial brands. More than 32,000 WiFi routers are potentially vulnerable to these exploits around the world.

Palo Alto Networks’ recent acquisition of Zingbox allowed Unit 42 to gain further visibility into the IoT security threat landscape and make this discovery.

Key findings of the research include:

●             More than 32,000 WiFi routers are potentially vulnerable: Unit 42 found updated Gafgyt samples using exploits that abuse known vulnerabilities (some of which are more than 5 years old) in IoT devices around the world, specifically small office/home wireless routers of known commercial brands like Zyxel, Huawei and Realtek.

●             This variant competes against similar botnets sold on Instagram: This malware sample contained Instagram usernames related to people selling “Botnet-as-a-Service” in a price range of $8 to $150 USD. However, Gafgyt is not being sold on Instagram.

●             This malware targets gamers: The compromised routers are being used to target various gaming servers, most notable those running the Valve Source that runs popular games like Half-Life and Team Fortress 2 among others.

●             Gafgyt is indicative of a broader threat landscape: Palo Alto Networks research finds 41% of general IoT devices continue to use default passwords, and 98% of all IoT device traffic remains unencrypted.

Read more  An Engineer’s Perfect Answer to the “Tell Me About Yourself” Job Interview Question

In September 2019, during the proactive IoT threat-hunting process conducted daily by the Unit 42 (formerly Zingbox security research) team, we discovered an updated Gafgyt variant attempting to infect IoT devices; specifically small office/home wireless routers of known commercial brands like Zyxel, Huawei, and Realtek. This Gafgyt variant is a competing botnet to the JenX botnet, which also uses remote code execution exploits to gain access and recruit routers into botnets to attack gaming servers – most notably those running the Valve Source engine – and cause a Denial of Service (DoS). This variant also competes against similar botnets, which we have found are frequently sold on Instagram. According to Shodan scans, there are more than 32,000 WiFi routers potentially vulnerable to these exploits around the world. Additionally, it abuses one more vulnerability than JenX does

Share via

,

Like it? Share with your friends!

88
2 shares, 88 points

32,000+ WiFi Routers for Gamers are in Trouble

You may also like

log in

Forgot password?
Captcha!
Don't have an account?
sign up

reset password

Back to
log in

sign up

Captcha!
Back to
log in
Send this to a friend