A broadband router botnet and vendor complacency stinks
A worm is creating a botnet based on broadband routers. Botnets are used to launch denial of service attacks which cause internet services such as websites to become unavailable or slow. The disturbing component of this example is the vendor complacency. In spite being warned about using the same settings on their broadband routers it seems some companies have continued to do so. That creates great opportunity for this sort of worm.
We will watch this issue closely and produce follow up information.
Chuck Norris Botnet and Broadband Routers
Last week Czech researchers released information on a new worm which exploits CPE devices (broadband routers) by means such as default passwords, constructing a large DDoS botnet. Today this story hit international news.
When I raised this issue before in 2007 on the NANOG mailing list, some other vetted mailing lists and on CircleID here and here, the consensus was that the vendors will not change their position on default settings unless “something happens”, I guess this is it, but I am not optimistic on seeing activity from vendors on this now, either.
A D-Link spokesman said he was not aware of the botnet, and the company did not immediately have any comment on the issue.Read more at www.circleid.com
1 Response1 Recommend