Security News Hackers backed by Russia and China are infecting SOHO routers like yours, FBI warns

[MuzzMelbourne]

Content source

https://arstechnica.com/security/2024/02/kremlin-backed-hackers-are-infecting-ubiquity-edgerouters-fbi-warns/

The FBI and partners from 10 other countries are urging owners of Ubiquiti EdgeRouters to check their gear for signs they’ve been hacked and are being used to conceal ongoing malicious operations by Russian state hackers.

The Ubiquiti EdgeRouters make an ideal hideout for hackers. The inexpensive gear, used in homes and small offices, runs a version of Linux that can host malware that surreptitiously runs behind the scenes. The hackers then use the routers to conduct their malicious activities. Rather than using infrastructure and IP addresses that are known to be hostile, the connections come from benign-appearing devices hosted by addresses with trustworthy reputations, allowing them to receive a green light from security defenses.

Hackers backed by Russia and China are infecting SOHO routers like yours, FBI warns

Six years on, routers remain a favorite post for concealing malicious activities.

arstechnica.com

 

[simmerskool]

Hackers backed by Russia and China are infecting SOHO routers like yours, FBI warns

Six years on, routers remain a favorite post for concealing malicious activities.

arstechnica.com

WTF! I have a Ubiquity router but not EdgeRouter. Feels like contact_support_time to see what's what... (just when I started to think all is good)