A vulnerability in Zyxeltech\u2019s ZynOS firmware, which is used in numerous DSL routers globally, is exposing many of the devices\u00a0to a DNS hijacking attack.<\/p>\n
Todor Donev, a member of the Bulgarian security research group Ethical Hacker, revealed the vulnerability<\/strong><\/a> which allows hackers to change the DNS settings on routers running the ZynOS firmware.<\/p>\n \u201cThe vulnerability exists in the web interface, which is accessible without authentication,\u201d said Donev.<\/p>\n \u201cOnce modified, systems use foreign DNS servers, which are usually set up by cybercriminals,\u201d Donev explained.<\/p>\n Compromised routers will allow hackers to redirect a user\u2019s traffic to malicious sites, and steal personal information.<\/p>\n A user accessing a banking site, for example, may be redirected to a phishing site which will gather sensitive information.<\/p>\n Other attacks may include pushing malware to users, and even replacing ads on legitimate sites.<\/p>\n According to The Stack<\/a>,<\/strong> the attack will \u201cwork most easily on affected routers which are configured for remote administration, but can also be implemented via Cross-Site Request Forgery (CSRF)\u201d.<\/p>\n Some of the routers affected include D-Link\u2019s DSL-2740R ADSL router, as well as DSL routers from TP-Link and ZTE.<\/p>\n Don\u2019t share your smartphone with friends or family<\/a><\/strong><\/p>\nMore security news<\/h3>\n