Home
 » ISP News » 
Sponsored Links

UPDATE Hackers Start to Exploit New NETGEAR Router Security Flaws

Saturday, Oct 10th, 2015 (8:22 am) - Score 3,866

Consumers who own any one of several NETGEAR broadband router models (JNR1010v2, JNR3000, JWNR2000v5, JWNR2010v5, N300, R3250, WNR2020, WNR614, WNR618) could be vulnerable to two new exploits that may allow a remote attacker to gain full control of your device.

Apparently these exploits, which were first discovered during the summer and have only recently been published online (here and here), only work over the Internet if the router has Wide Area Network (WAN) Administration enabled (this is not normally switched on by default). Otherwise the hacker would need to be physically near to your network.

A successful attack would grant the hacker unauthenticated root access, which could allow them to do various things, such as snooping on your network traffic by changing your DNS settings so that any website requests and inputs run through compromised servers.

A related report on the BBC shows that such attacks are already happening, although it’s not yet a huge problem because not everybody will have their device open to remote access. But some hackers do drive around looking for vulnerable networks to exploit.

NETGEAR are clearly aware of the problem and taking it seriously, in fact they’ve already developed a firmware fix, but they have yet to release an update for all of the affected routers. Device manufacturers can be lazy and tend to stop providing support for their routers after a few years, even though the kit may remain in use for a lot longer.

UPDATE 13th October 2015

The following is a new statement from NETGEAR, which yesterday released a new firmware fix for the stated router models.

A NETGEAR Spokesperson told ISPreview.co.uk:

NETGEAR takes customer security very seriously. A firmware update has been released to address the issue: http://kb.netgear.com/app/answers/detail/a_id/29959. NETGEAR is proactively notifying registered users via email, plus customers can find the new firmware by checking the firmware page, desktop, and mobile Genie app.

NETGEAR encourages its customers to ensure WiFi security is turned on and that remote access functionality is turned off (both default settings in NETGEAR’s routers and gateways). NETGEAR also advises customers to change the default password for the router to prevent unauthorised devices from accessing your network.”

Tags:
Mark-Jackson
By Mark Jackson
Mark is a professional technology writer, IT consultant and computer engineer from Dorset (England), he also founded ISPreview in 1999 and enjoys analysing the latest telecoms and broadband developments. Find me on X (Twitter), Mastodon, Facebook and .
Search ISP News
Search ISP Listings
Search ISP Reviews

Comments are closed

Cheapest Ultrafast ISPs
  • Gigaclear £17.00
    Speed: 200Mbps, Unlimited
    Gift: None
  • Zzoomm £19.95
    Speed: 150Mbps, Unlimited
    Gift: None
  • YouFibre £19.99
    Speed: 150Mbps, Unlimited
    Gift: None
  • Community Fibre £20.00
    Speed: 150Mbps, Unlimited
    Gift: None
  • BeFibre £21.00
    Speed: 150Mbps, Unlimited
    Gift: £25 Love2Shop Card
Large Availability | View All
Cheapest Superfast ISPs
  • Hyperoptic £17.99
    Speed 33Mbps, Unlimited
    Gift: Promo code: HYPERDEAL
  • UtilityWarehouse £21.60
    Speed 35Mbps, Unlimited (FUP)
    Gift: None
  • Shell Energy £21.99
    Speed 38Mbps, Unlimited
    Gift: None
  • NOW £24.00
    Speed 63Mbps, Unlimited
    Gift: None
  • Vodafone £24.00
    Speed 73 - 82Mbps, Unlimited
    Gift: None
Large Availability | View All
The Top 20 Category Tags
  1. FTTP (5236)
  2. BT (3436)
  3. Politics (2436)
  4. Openreach (2241)
  5. Building Digital UK (2184)
  6. Business (2183)
  7. FTTC (2023)
  8. Mobile Broadband (1899)
  9. Statistics (1734)
  10. 4G (1604)
  11. Virgin Media (1535)
  12. Ofcom Regulation (1414)
  13. FTTH (1377)
  14. Wireless Internet (1361)
  15. Fibre Optic (1359)
  16. 5G (1180)
  17. Vodafone (1086)
  18. EE (1073)
  19. TalkTalk (908)
  20. Sky Broadband (876)
Promotion
Helpful ISP Guides and Tips
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
»
Sponsored

Copyright © 1999 to Present - ISPreview.co.uk - All Rights Reserved - Terms , Privacy and Cookie Policy , Links , Website Rules , Contact
Mastodon