About Us

IT Services

Understanding IT

News & Events



Contact Us

(702) 720-1700

  • Register

Agilitec IT Blog

Could Your Router be Infected with Malware?

Could Your Router be Infected with Malware?

Certain threats out there are dangerous enough to cause major entities to warn against them. In particular, a recent malware by the name of VPNFilter has been deemed dangerous and prevalent enough that the FBI has addressed it. Since the malware targets routers (probably not your first guess in terms of possible vulnerabilities), it has considerable potential to become a nuisance for your organization.

Understanding VPNFilter
VPNFilter is a malware that hides in your router and remains even if you restart the device. VPNFilter is known for prioritizing devices in Ukraine, but you should never count on the trend to protect you from known threats. It’s thought that the VPNFilter malware has its roots in a group called Sofacy, and the malware operates in three basic steps.

The first step for this malware is that it installs itself on the device and remains there even in the event that the router is rebooted or turned off. Second, the malware will install certain permissions on the router that allows it to change settings, manage files, and execute commands. The router can then proceed to brick itself, making it much more difficult for your organization to keep operations moving along. In its final stages, this malware lets a hacker see the data packets that are being sent to and from your organization’s device, meaning that they can then also issue commands and communicate with the device via a Tor web browser.

This threat was specifically mentioned by the FBI because of its persistence. While resetting the device will disable the second and third steps, the first will remain, creating an endless cycle if you don’t do anything about it.

Is Your Router Affected?
Even though not all routers are affected, the number is still quite considerable. Here is a list of affected brands:

  • Asus
  • D-Link
  • Huawei
  • Linksys
  • MikroTik
  • Netgear
  • TP-Link
  • Ubiquiti
  • Upvel
  • ZTE

If you would like a more comprehensive list of all affected devices, Symantec has a list on their website: https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware

How You Fix It
There is an easy first step to fixing VPNFilter, and it's to apply any patches or security updates designed by the hardware manufacturer to resolve the vulnerability. If you would like our help to protect your business's firewall, just let us know. If you are an Agilitec client, rest assured knowing we monitor all client routers for malware and apply patches as they are made available.

For more great updates and tech tips, be sure to subscribe to Agilitec IT’s blog.

Wireless Charging Just Got an Upgrade… But is That...
Using the Right Communication Tools Can Bolster Pr...


No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Monday, November 19, 2018

Captcha Image

Mobile? Grab this Article!

QR-Code dieser Seite

Tag Cloud

Tip of the Week Network Security Technology Security Internet Privacy Tech Term Communications Productivity Malware IT Support Best Practices Data Backup Data Recovery Internet of Things Efficiency Mobile Devices BDR User Tips Email VoIp Business Management Browser Windows 10 Cybersecurity Data Small Business Hackers Saving Money Managed IT Services Hardware Google Business Backup Business Computing Upgrade Smartphones Collaboration Router IT Services Outsourced IT Phishing Managed IT services Communication Information Redundancy Mobile Device Software MSP Innovation Cost Management Bring Your Own Device Users Networking Managed Service Spam Workplace Tips Cloud Project Management Vulnerability Data Breach Network Passwords Computer Devices Automation Scam Best Practice Microsoft Office Value Camera Cybercrime Maintenance Analysis Windows Spyware Financial Technology Travel Telephone IoT Streaming Media Managed Service Provider Jun 27 2018 11:00 AM Pacific Windows 7 Apps Disaster Recovery Augmented Reality Wireless Technology Server Blockchain Hosted Solutions Smartphone intranet Android Hyperlink eWaste Content Filter Two-factor Authentication O 365 versions Conferencing WannaCry Law Enforcement Remote Computing Applications Charger Budget Excel Alert Cloud Computing Instant Messaging Printing Hybrid Cloud Updates Data loss Wireless Internet Amazon Workers Monitoring Vendor backup files Touchscreen App Update Data Privacy Chromebook Unified Communications SaaS Wireless Charging Ransomware Projects Mobile Device Management Cleaning Education WPA3 Office 365 Gamification Virtual Assistant Management Employee-Employer Relationship Office Online Display OneNote Smart Tech Software as a Service Marketing Virtualization Students File Storage History Operating System Google Assistant Business Technology Testing Holiday Microsoft Word Big Data Alexa for Business The Internet of Things Antivirus Money team chat Co-Managed Services Evernote Connectivity Microsoft Bandwidth Cortana Social Media Flexibility Computing Wasting Money Data Security Mobile Security Data Protection Compliance Edge Patch Management Memory Proactive Financial PowerPoint Gadgets Twitter Identity Employer-Employee Relationship Legal Data Theft Quick Tips Wi-Fi Language Remote Monitoring Computer Forensics Identities Hard Drive Ciminal Safety Risk Management Artificial Intelligence Tech Support Company Culture Fraud Websites Device Security Virus Managing Stress Gmail Thank You Business Continuity Printers Social Engineering App store IT budget Regulation Application Vendor Management Congratulations

Latest News & Events

Join Us On July 25, 2018 At 11AM Pacific Time For A Free 30-Minute Educational Webinar On How To Reduce The Number Of Meetings You Have And Make The Meetings You Do Have Much More Effective.  AgendaIntroMicrosoft Teams and Office ...

Contact Us

Learn more about what Agilitec IT can do for your business.

Call Us Today
Call us today
(702) 720-1700

5215 Ponderosa Way
Suite D

Las Vegas, Nevada 89118