300,000 MikroTik routers are ticking security time bombs, researchers say

 In Biz & IT, miktotik, routers, vulnerabilities
0

300,000 MikroTik routers are ticking security time bombs, researchers say

Serving the Technologist for more than a decade. IT news, reviews, and analysis.
300,000 MikroTik routers are ticking security time bombs, researchers say

Enlarge (credit: Getty Images)

As many as 300,000 routers made by Latvia-based MikroTik are vulnerable to remote attacks that can surreptitiously corral the devices into botnets that steal sensitive user data and participate in Internet-crippling DDoS attacks, researchers said.

The estimate, made by researchers at security firm Eclypsium, is based on Internet-wide scans that searched for MikroTik devices using firmware versions known to contain vulnerabilities that were discovered over the past three years. While the manufacturer has released patches, the Eclypsium research shows that a significant proportion of users has yet to install them.

“Given the challenges of updating MikroTik, there are large numbers of devices with these 2018 and 2019 vulnerabilities,” Eclypsium researchers wrote in a post. “Collectively, this gives attackers many opportunities to gain full control over very powerful devices, positioning them to be able to target devices both behind the LAN port as well as target other devices on the Internet.”

Read 5 remaining paragraphs | Comments

Device owners have yet to install patches for 3 high-severity vulnerabilities.

Recent Posts
Contact Us

We're not around right now. But you can send us an email and we'll get back to you, asap.

Not readable? Change text. captcha txt
Tor is under threat from Russian censorship and Sybil attacksanonymity, Biz & IT, sybil attacks, the onion router, tor
Zeroday in ubiquitous Log4j tool poses a grave threat to the InternetBiz & IT, log4j, minecraft, open source, vulnerability