New VPNFilter Malware Contains Kill Switch, Infects Over 500,000 Routers
Routers are the driving force behind a lot of our modern-day internet use. They power our Wi-Fi, and therefore our internet-connected devices. We rely on them day in and out, entrusting them with some of our most personal information. So when they’re attacked, it can be cause for concern. Just today, that precise scenario has come to life, as it has been discovered that more than half a million routers and storage devices in dozens of countries have been infected with a piece of highly sophisticated IoT botnet malware called VPNFilter.
Named after the directory the malware uses to hide on an infected device, VPNFilter first makes its way into a device through a reboot. Once it’s inside, it gains a foothold on the infected device and then deploys the malware.
VPNFilter has been designed with versatile capabilities, it attacks routers and other network-connected devices in order to steal credentials and other information exchanged across the network. It even contains a kill switch for routers, which means an attack could stop internet access for any devices tapping into that router.
So far, over 500,000 devices have been infected by the malware in over 54 countries. Therefore, with this attack spreading rapidly, it’s important to take security steps immediately in order to stay protected from VPNFilter. To do just that, follow these tips:
- Update your router’s firmware. Router manufacturers are already working to make patches that will help protect users against this malware. Therefore, make sure you regularly update your router’s firmware, as these fixes are typically included within each update.
- Be careful with what information you share. Since this malware can steal the data exchanged across your Wi-Fi network, it’s crucial you get selective with the information you do share for the time being. This means personal details, such as addresses, personally identifiable information, and financial data.
The post New VPNFilter Malware Contains Kill Switch, Infects Over 500,000 Routers appeared first on McAfee Blogs.
More antivirus and malware news?
- Website Hacked Trend Report – 2016/Q1
- Commercial spyware unleashed against Mexican political activists
- When you isolate your industrial control systems don’t forget about DNS
- "Vaccine" Available for CTB-Locker, Locky, TeslaCrypt
- Microsoft Windows Media Center CVE-2014-4060 Remote Code Execution Vulnerability
- Microsoft Windows DVD Maker CVE-2017-0045 Cross Site Request Forgery Vulnerability
- Service interruption, 4/5/2012
- What Next Generation Firewalls Miss
- Potential vBulletin Exploit (4.1+ and 5+)
- Best Practices and Applications of TLS/SSL