About Us

IT Services

Understanding IT

News & Events



Contact Us

(702) 720-1700

  • Register

Agilitec IT Blog

2 minutes reading time (414 words)

Could Your Router be Infected with Malware?

Could Your Router be Infected with Malware?

Certain threats out there are dangerous enough to cause major entities to warn against them. In particular, a recent malware by the name of VPNFilter has been deemed dangerous and prevalent enough that the FBI has addressed it. Since the malware targets routers (probably not your first guess in terms of possible vulnerabilities), it has considerable potential to become a nuisance for your organization.

Understanding VPNFilter
VPNFilter is a malware that hides in your router and remains even if you restart the device. VPNFilter is known for prioritizing devices in Ukraine, but you should never count on the trend to protect you from known threats. It’s thought that the VPNFilter malware has its roots in a group called Sofacy, and the malware operates in three basic steps.

The first step for this malware is that it installs itself on the device and remains there even in the event that the router is rebooted or turned off. Second, the malware will install certain permissions on the router that allows it to change settings, manage files, and execute commands. The router can then proceed to brick itself, making it much more difficult for your organization to keep operations moving along. In its final stages, this malware lets a hacker see the data packets that are being sent to and from your organization’s device, meaning that they can then also issue commands and communicate with the device via a Tor web browser.

This threat was specifically mentioned by the FBI because of its persistence. While resetting the device will disable the second and third steps, the first will remain, creating an endless cycle if you don’t do anything about it.

Is Your Router Affected?
Even though not all routers are affected, the number is still quite considerable. Here is a list of affected brands:

  • Asus
  • D-Link
  • Huawei
  • Linksys
  • MikroTik
  • Netgear
  • TP-Link
  • Ubiquiti
  • Upvel
  • ZTE

If you would like a more comprehensive list of all affected devices, Symantec has a list on their website: https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

How You Fix It
There is an easy first step to fixing VPNFilter, and it's to apply any patches or security updates designed by the hardware manufacturer to resolve the vulnerability. If you would like our help to protect your business's firewall, just let us know. If you are an Agilitec client, rest assured knowing we monitor all client routers for malware and apply patches as they are made available.

For more great updates and tech tips, be sure to subscribe to Agilitec IT’s blog.

Wireless Charging Just Got an Upgrade… But is That...
Using the Right Communication Tools Can Bolster Pr...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Wednesday, September 26, 2018

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Network Security Tip of the Week Technology Security Privacy Tech Term Internet Best Practices Internet of Things Mobile Devices IT Support Data Backup Data Recovery Efficiency Communications Business Management Productivity Data Malware Cybersecurity Small Business BDR Saving Money Managed IT Services VoIp Business User Tips Email Collaboration Router Hackers Google Managed IT services Information Communication Hardware Browser Business Computing Backup Smartphones Windows 10 Software Cost Management Bring Your Own Device Innovation Users Managed Service Networking Outsourced IT Cloud Vulnerability Network Data Breach Devices Automation Passwords Mobile Device MSP Redundancy Smartphone Blockchain Hosted Solutions eWaste Wireless Technology Content Filter intranet Android IT Services Law Enforcement Remote Computing Applications Server O 365 versions Instant Messaging Spam Two-factor Authentication Printing Hybrid Cloud Budget Cloud Computing Workplace Tips Charger Monitoring Vendor Data loss WannaCry Wireless Internet Amazon Update Data Privacy Chromebook Unified Communications SaaS Project Management Excel Alert backup files Education WPA3 Phishing Updates Projects Mobile Device Management Cleaning Workers Wireless Charging Management Employee-Employer Relationship App Gamification Virtual Assistant Smart Tech Software as a Service Virtualization Office Online Students File Storage Operating System Office 365 Google Assistant Business Technology Antivirus Marketing Money Testing Big Data OneNote Computer Alexa for Business History Connectivity Microsoft Bandwidth Flexibility Computing team chat Microsoft Office Holiday Microsoft Word Value The Internet of Things Upgrade Spyware Cortana Social Media Financial Technology Camera Analysis Evernote Windows IoT Streaming Media Managed Service Provider Best Practice Travel Disaster Recovery Augmented Reality Cybercrime Maintenance Jun 27 2018 11:00 AM Pacific Apps Wi-Fi Quick Tips Gadgets Language Remote Monitoring Hard Drive Ciminal Safety Computer Forensics Identities Artificial Intelligence Tech Support Risk Management Company Culture Ransomware Fraud Websites Device Security Virus Managing Stress Business Continuity Gmail Printers Social Engineering App store Regulation Application IT budget Thank You Vendor Management Data Protection Compliance Edge Patch Management Wasting Money Data Security Mobile Security Proactive Financial Congratulations Memory PowerPoint Employer-Employee Relationship Legal Data Theft Twitter Identity

Latest News & Events

Join Us On July 25, 2018 At 11AM Pacific Time For A Free 30-Minute Educational Webinar On How To Reduce The Number Of Meetings You Have And Make The Meetings You Do Have Much More Effective.  AgendaIntroMicrosoft Teams and Office ...

Contact Us

Learn more about what Agilitec IT can do for your business.

Call Us Today
Call us today
(702) 720-1700

5215 Ponderosa Way
Suite D

Las Vegas, Nevada 89118