www.hardwarezone.com.my - View Single Post - Phishing without borders, or why you need to update your router
View Single Post
Old 16-05-2019, 02:03 PM   #1
utkarsh
Junior Member
 
Join Date: May 2019
Posts: 1
Talking Phishing without borders, or why you need to update your router

What is the most common threat across cyberspace these days? Itís still phishing ó thereís nothing new under the sun. But todayís router-based phishing doesnít require you to fall for a hoax e-mail message. In fact, you can follow a whole bunch of standard rules ó avoid using public Wi-Fi, hover over links before clicking, and so forth ó but in the situation we discuss here, those rules wonít help. Letís take a closer look at phishing schemes that involve hijacked routers.
How routers end up being hijacked?
In general, there are two basic ways to hijack a router. The first approach is to take advantage of default credentials. You see, every router has an administrator password ó not the one you use to connect to your Wi-Fi, the one you use to log in to the routerís administrator panel and to change its settings.

Although users can change the password, most leave it unchanged. And when we keep the default password set by a routerís manufacturer, outsiders can guess ó or sometimes even Google ó it.

Here's an instruction manual

The second approach is to exploit a vulnerability in a routerís firmware (of which there is no shortage) that allows a hacker to take control of the router without any password at all.

Either way, criminals can do their thing remotely, automatically, and on a massive scale. Hijacked routers can provide diverse benefits, but the one weíre going to focus on here is phishing that is extremely hard to spot.
utkarsh is offline   Reply With Quote