Coming Soon: GET-IT: Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET Coming Soon: GET-IT: Endpoint Management 1-Day Conference on September 28th at 9:30 AM ET

Draytek issue vulnerability warning May 2018

This topic has 0 replies, 1 voice, and was last updated 3 years, 4 months ago by Blood.

Viewing 1 post (of 1 total)

Author

Posts
Blood
Member

May 21, 2018 at 3:08 am #167561

Just a heads-up to Draytek router users out there. Draytek have issued a warning about potential malicious DNS configuration changes that can be made on their routers.

https://www.draytek.co.uk/support/security-advisories/kb-advisory-csrf-and-dns-dhcp-web-attacks

Note that the web page took an age to open for me so be patient.

Essentially, if your router’s DNS settings have been changed so that they include the address 38.134.121.95 your router has been compromised.

Draytek recommend installing the latest firmware (which they are compiling), and signing up to their mailing list so that their customers can be notified about updates to this situation and any future issues:
https://www.draytek.co.uk/support/downloads
https://www.draytek.co.uk/information/mailing-list
Author

Posts

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.