Hackers use router security bug for cryptojacking

[Newsfeed]

Hackers use router security bug for cryptojacking

Trustwave security researchers have discovered a cryptojacking attack affecting MikroTik routers, Sophos reported.

 

[JerryMungo]

Hackers use router security bug for cryptojacking

Trustwave security researchers have discovered a cryptojacking attack affecting MikroTik routers, Sophos reported.

Mikrotik.
Oh dear...
That said, this sounds like a feature few would use.

 

[HeftyCrab]

Mikrotik.
Oh dear...
That said, this sounds like a feature few would use.

This has also been patched months ago. People only have themselves to blame.

 

[JerryMungo]

This has also been patched months ago. People only have themselves to blame.

Or their IT consultant who may not be as proactive as they'd hoped.

 

[Sinbad]

Sneaky clever attack. Imagine if the ingenuity of all these black hat types could be harnessed for the good of mankind

 

[kianm]

Sneaky clever attack. Imagine if the ingenuity of all these black hat types could be harnessed for the good of mankind

^
these guys don't fail to impress (hat down )

 

[HeftyCrab]

Or their IT consultant who may not be as proactive as they'd hoped.

True.

 

[JerryMungo]

Sneaky clever attack. Imagine if the ingenuity of all these black hat types could be harnessed for the good of mankind

I've often thought the same. There's legit money to be made...

 

[Thor]

Mikrotik, on no.

 

[ambo]

As far as I can tell - most of the consumer models would not be vulnerable if you don't fiddle with the default firewall rules. If you're working with the high end models then you should know that multiple layers of security are needed to keep you safe on the big bad Internet.

Firewall all management ports (winbox, ssh, etc). Disable any ports that you don't use - like the API. And lastly - only mange via a VPN from outside the network.