About Us

IT Services

Understanding IT

News & Events



Contact Us

(702) 720-1700

  • Register

Agilitec IT Blog

Could Your Router be Infected with Malware?

Could Your Router be Infected with Malware?

Certain threats out there are dangerous enough to cause major entities to warn against them. In particular, a recent malware by the name of VPNFilter has been deemed dangerous and prevalent enough that the FBI has addressed it. Since the malware targets routers (probably not your first guess in terms of possible vulnerabilities), it has considerable potential to become a nuisance for your organization.

Understanding VPNFilter
VPNFilter is a malware that hides in your router and remains even if you restart the device. VPNFilter is known for prioritizing devices in Ukraine, but you should never count on the trend to protect you from known threats. It’s thought that the VPNFilter malware has its roots in a group called Sofacy, and the malware operates in three basic steps.

The first step for this malware is that it installs itself on the device and remains there even in the event that the router is rebooted or turned off. Second, the malware will install certain permissions on the router that allows it to change settings, manage files, and execute commands. The router can then proceed to brick itself, making it much more difficult for your organization to keep operations moving along. In its final stages, this malware lets a hacker see the data packets that are being sent to and from your organization’s device, meaning that they can then also issue commands and communicate with the device via a Tor web browser.

This threat was specifically mentioned by the FBI because of its persistence. While resetting the device will disable the second and third steps, the first will remain, creating an endless cycle if you don’t do anything about it.

Is Your Router Affected?
Even though not all routers are affected, the number is still quite considerable. Here is a list of affected brands:

  • Asus
  • D-Link
  • Huawei
  • Linksys
  • MikroTik
  • Netgear
  • TP-Link
  • Ubiquiti
  • Upvel
  • ZTE

If you would like a more comprehensive list of all affected devices, Symantec has a list on their website: https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

How You Fix It
There is an easy first step to fixing VPNFilter, and it's to apply any patches or security updates designed by the hardware manufacturer to resolve the vulnerability. If you would like our help to protect your business's firewall, just let us know. If you are an Agilitec client, rest assured knowing we monitor all client routers for malware and apply patches as they are made available.

For more great updates and tech tips, be sure to subscribe to Agilitec IT’s blog.

Wireless Charging Just Got an Upgrade… But is That...
Using the Right Communication Tools Can Bolster Pr...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Tuesday, February 19, 2019

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Network Security Technology Security Internet Privacy Tech Term Communications Efficiency Productivity Malware IT Support Best Practices Data Backup Data Recovery Internet of Things Mobile Devices Business Management VoIp Browser BDR User Tips Email Business Windows 10 Cybersecurity Small Business Hackers Data Saving Money Google Managed IT Services Hardware Communication Backup Collaboration Business Computing Router IT Services Smartphones Information Outsourced IT Managed IT services Phishing Upgrade Computer Passwords Users Managed Service Devices Workplace Tips Redundancy Automation Cost Management Bring Your Own Device Software Innovation MSP Networking Cloud Spam Vulnerability Project Management Mobile Device Data Breach Network Windows 7 OneNote Money Mobile Device Management Cleaning Augmented Reality Marketing Alexa for Business Connectivity Microsoft Smartphone History team chat Virtualization Hyperlink The Internet of Things Value Holiday Microsoft Word Conferencing Evernote Financial Technology Applications Cortana Social Media Windows Operating System Budget Best Practice Streaming Media Managed Service Provider Big Data Instant Messaging Travel Antivirus Disaster Recovery Flexibility Computing Jun 27 2018 11:00 AM Pacific Vendor Cybercrime Maintenance Touchscreen SaaS Projects Content Filter Analysis WPA3 Wireless Technology Spyware Remote Computing O 365 versions IoT Employee-Employer Relationship Server Display Printing Hybrid Cloud Apps Software as a Service Two-factor Authentication WannaCry Monitoring Blockchain Hosted Solutions File Storage Charger Wireless Internet Amazon Chromebook Unified Communications intranet Android backup files eWaste Testing Excel Alert Co-Managed Services Workers Law Enforcement Bandwidth Updates Education Scam App Management Cloud Computing Microsoft Office Wireless Charging Gamification Virtual Assistant Smart Tech Data loss Office Online Camera Ransomware Telephone Google Assistant Business Technology Update Data Privacy Office 365 Students Thank You Application Fraud Websites Quick Tips Vendor Management Device Security Virus Wasting Money Data Protection Compliance Congratulations Financial Social Engineering App store Memory IT budget PowerPoint Twitter Employer-Employee Relationship Patch Management Gadgets Data Security Mobile Security Edge Remote Monitoring Proactive Hard Drive Computer Forensics Legal Data Theft Identity Artificial Intelligence Printers Company Culture Wi-Fi Regulation Language Ciminal Safety Identities Managing Stress Risk Management Tech Support Business Continuity Gmail

Latest News & Events

Join Us On July 25, 2018 At 11AM Pacific Time For A Free 30-Minute Educational Webinar On How To Reduce The Number Of Meetings You Have And Make The Meetings You Do Have Much More Effective.  AgendaIntroMicrosoft Teams and Office ...

Contact Us

Learn more about what Agilitec IT can do for your business.

Call Us Today
Call us today
(702) 720-1700

5215 Ponderosa Way
Suite D

Las Vegas, Nevada 89118