Rogue Routers Relating to Internet of Things Discovered

CC0 / Pixabay / Cyber attack
Cyber attack - Sputnik International
The Internet of Things (IoT) opens up a world of virtual opportunities - from streamlining your central heating system under one Wi-Fi enabled roof to remotely setting your oven to cook a roast chicken or automatically locking your front door and switching your bedroom light on or off.

But as with all technological advancements, the hackers are keeping pace too.

​According to F-Secure researchers, some models of Inteno Internet routers are vulnerable to remote hack attacks, which can infiltrate the device and monitor all Internet traffic passing through it.

​The researchers' claims that the flaw in the router allows the hacker to install what's called "firmware" on the device, complete with "backdoors" and encryption, allowing it to take complete control over it.

Black Hats, White Hats & The Dark Web, A Quick Guide Through Cyberspace - Sputnik International
Black Hats, White Hats and the Dark Web: A Quick Guide Through Cyberspace

The remote hacker could potentially, "be able to listen in on unencrypted traffic going through the router, not just device-to-Internet, but device-to-device inside the home; as well as manipulate the victim's browsing sessions by redirecting to malicious sites," researchers told IB Times.

Sounds pretty creepy doesn't it? Like an Internet poltergeist unleashed into your home, capable of hacking into and monitoring every little bit of Internet data running through the router.

Smart home hub - Sputnik International
Smart Hacking Into Your Home Hub Could Lock You in Your Own Room

How It's Hacked

By accessing the traffic between the router and the Internet Service Provider (ISP) server, a hacker can set up a separate update, complete with malicious firmware (which is a type of software that controls, monitors and manipulates Internet systems), to gaining full access to the router and spy on all the data running through it.

"By changing the firmware, the attacker can change any and all of the router," Janne Kaukanen, cyber security expert at F-Secure said.

"Watching video content you're storing on another computer? Kaukenen teases, "so is the attacker."

"Updating another device through the router?" Kaukenen asks. "Hopefully it's not vulnerable like this, or they'll own that too," Kaukenen warns.

The cyber security expert also suggests that "firmware used in router and Internet of Things devices is neglected by manufacturers and their customers — by everyone except hackers, who use the vulnerabilities to hijack Internet traffic, steal information and spread malware."

According to the article published, F-Secure say they contacted Inteno about the flaw in some of their routers. Inteno later replied saying that software issues are handled by the "operators" that sell the equipment.

"The operator that sells the CPE to end users or run their services over it should request software updates from Inteno," and Inteno spokesperson said at the time.

"Inteno do not do end user sales on CPE, we only sell through operators so such software features are directed through operators requests."

The Internet of Things has the capacity to streamline your virtual life, setting that oven to roast that chicken, locking the front door in case you forget, but it's worth remembering that your life could be infiltrated by hackers at the same time, set out on exploiting vulnerable systems.

To participate in the discussion
log in or register
Заголовок открываемого материала