Posted by Martijn Grooten on Dec 18, 2019
Given their prominent position on home and corporate networks and their often poor standard of security, one might be forgiven for being surprised that massive attacks against routers didn't really take off until a few years ago. The game changer in this space is generally seen to be the Mirai IoT botnet which, together with other malware based on its source code, targeted many routers.
In a paper presented at VB2019, K7 Computing researcher Anurag Shandilya looked at recent attacks against routers. He also performed three case studies of recently found vulnerabilities in routers exploited by malware: CVE-2018-14847, CVE-2018-10561 and CVE-2019-1652.
Today we publish Anurag's paper in both HTML and PDF format, as well as the recording of his presentation of the paper in London. His presentation included a live demo of an exploit of CVE-2018-14847.
Did you see we have opened the Call for Papers for VB2020 in Dublin? Submit your abstract before 15 March for a chance to make it onto the programme of one of the most international threat intelligence conferences!