Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET Coming Soon: GET:IT Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET

Draytek issue vulnerability warning May 2018

This topic has 0 replies, 1 voice, and was last updated 3 years, 3 months ago by Blood.

Viewing 1 post (of 1 total)

Author

Posts
Blood
Member

May 21, 2018 at 3:08 am #167561

Just a heads-up to Draytek router users out there. Draytek have issued a warning about potential malicious DNS configuration changes that can be made on their routers.

https://www.draytek.co.uk/support/security-advisories/kb-advisory-csrf-and-dns-dhcp-web-attacks

Note that the web page took an age to open for me so be patient.

Essentially, if your router’s DNS settings have been changed so that they include the address 38.134.121.95 your router has been compromised.

Draytek recommend installing the latest firmware (which they are compiling), and signing up to their mailing list so that their customers can be notified about updates to this situation and any future issues:
https://www.draytek.co.uk/support/downloads
https://www.draytek.co.uk/information/mailing-list
Author

Posts

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.

GET-IT: EndPoint Management 1-Day Virtual Conference

The management of endpoints is complicated and the risks associated with having unsecured devices roaming outside the firewall are quickly becoming a targeted vector for malicious users. In this Petri one-day virtual conference, we will be diving deep into how you can improve the way you manage your endpoints and learn from industry experts and MVPs about best practices, available tools to streamline your operations, and what's coming soon with Windows 11.

Sponsored By