Attackers Exploit Zero-Day in End-of-Life D-Link Routers
Hackers are attacking a critical zero-day flaw in unsupported D-Link DSL routers to run arbitrary commands.
Stay updated on D-Link's latest information security news, insights, and updates with in-depth analysis and expert opinions.
Search across headline titles and summaries.
Background for this topic.
D-Link makes networking and connected devices such as home and small-business routers, access points, switches, cameras, and network-attached storage. These products matter in information security because they sit at network boundaries or hold sensitive traffic, video, and files. Security advisories usually apply to a particular model, hardware revision, and firmware version—not to every D-Link device.
Commonly relevant weaknesses include flaws in web administration, authentication bypass, command injection, and exposed management services. An internet-facing or end-of-life device may remain exploitable when updates are unavailable or unapplied, while cameras and storage systems can expose private content if access controls fail. Defenders should inventory exact models and firmware, apply applicable updates, replace unsupported equipment, restrict administration to trusted networks, disable unnecessary remote management and UPnP, and change default credentials. Logs and network telemetry can help identify suspicious administration or unexpected outbound connections from affected devices.
Weekly headline count for the current query.
Hackers are attacking a critical zero-day flaw in unsupported D-Link DSL routers to run arbitrary commands.
Thousands of ASUS routers have been infected and are believed to be part of a wide-ranging ORB network affecting devices from Linksys, D-Link, QNAP, and Araknis Network.
A vulnerability in the HNAP login request protocol that affects a family of devices gives unauthenticated users root access for command execution.
The company is asking users to retire several network-attached storage (NAS) models to avoid compromise through a publicly available exploit that results in backdooring.
The router specialist says the attacker's claims to have heisted millions and millions of records are significantly overblown. But an incident did happen, stemming from a successful phish.
Thousands of devices, including D-Link and Zyxel gear, remain vulnerable to takeover despite the availability of patches for the several bugs being exploited by IZ1H9 campaign.