{"id":17243,"date":"2019-12-18T10:52:17","date_gmt":"2019-12-18T18:52:17","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2019\/12\/18\/news-10979\/"},"modified":"2019-12-18T10:52:17","modified_gmt":"2019-12-18T18:52:17","slug":"news-10979","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2019\/12\/18\/news-10979\/","title":{"rendered":"VB2019 paper: Absolutely routed!! Why routers are the new bullseye in cyber attacks"},"content":{"rendered":"<p>Given their prominent position on home and corporate networks and their often poor standard of security, one might be forgiven for being surprised that massive attacks against routers didn&#8217;t really take off until a few years ago. The game changer in this space is generally seen to be the Mirai IoT botnet which, together with other malware based on its source code, targeted many routers.<\/p>\n<p>In a paper presented at VB2019,<em> K7 Computing<\/em> researcher Anurag Shandilya looked at recent attacks against routers. He also performed three case studies of recently found vulnerabilities in routers exploited by malware: CVE-2018-14847, CVE-2018-10561 and CVE-2019-1652.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" style=\"display: block; margin-left: auto; margin-right: auto;\" src=\"https:\/\/www.virusbulletin.com\/files\/cache\/b61198cd25570eddc06b99ac87cbd023_f4124.png\" alt=\"Figure-20.png\" width=\"700\" height=\"490\" \/><span class=\"centered-caption\">Scheduled script.<\/span><\/p>\n<p>Today we publish Anurag&#8217;s paper in both <a title=\"VB2019 paper: Absolutely routed!! Why routers are the new bullseye in cyber attacks\" href=\"https:\/\/www.virusbulletin.com\/virusbulletin\/2019\/12\/vb2019-paper-absolutely-routed-why-routers-are-new-bullseye-cyber-attacks\/\">HTML<\/a> and <a href=\"https:\/\/www.virusbulletin.com\/uploads\/pdf\/magazine\/2019\/VB2019-Shandilya.pdf\" target=\"_blank\">PDF <\/a>format, as well as the recording of his presentation of the paper in London. His presentation included a live demo of an exploit of CVE-2018-14847.<\/p>\n<p>\u00a0<\/p>\n<p>\u00a0<\/p>\n<p style=\"text-align: center;\" width=\"100%\" height=\"420\"><iframe loading=\"lazy\" src=\"https:\/\/www.youtube.com\/embed\/fPDCYooE9RM\" frameborder=\"0\" width=\"100%\" height=\"420\" style=\"\"> <\/iframe><\/p>\n<p>\u00a0<\/p>\n<p><em>Did you see we have opened the<a title=\"VB2020 call for papers - now open!\" href=\"https:\/\/www.virusbulletin.com\/blog\/2019\/12\/vb2020-call-papers-now-open\/\"> Call for Papers<\/a> for VB2020 in Dublin? Submit your abstract before 15 March for a chance to make it onto the programme of one of the most international threat intelligence conferences!<\/em><\/p>\n<p>outertext<br \/><a href=\"https:\/\/www.virusbulletin.com\/blog\/2019\/12\/vb2019-paper-absolutely-routed-why-routers-are-new-bullseye-cyber-attacks\/\" target=\"bwo\" >https:\/\/www.virusbulletin.com\/rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><img decoding=\"async\" src=\"https:\/\/www.virusbulletin.com\/files\/cache\/b61198cd25570eddc06b99ac87cbd023_f4124.png\"\/><br \/>                                 Today we publish the VB2019 paper by Anurag Shandilya (K7 Computing) who looked at recent malware attacks against routers, as well as the video of his presentation in London.                <\/p>\n<p>                 <a href=\"https:\/\/www.virusbulletin.com\/blog\/2019\/12\/vb2019-paper-absolutely-routed-why-routers-are-new-bullseye-cyber-attacks\/\">Read more<\/a>                                <\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[23177,10378,23176],"tags":[],"class_list":["post-17243","post","type-post","status-publish","format-standard","hentry","category-magazine","category-security","category-virusbulletin"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17243","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=17243"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/17243\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=17243"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=17243"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=17243"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}