Advice Request Modem router security

Please provide comments and solutions that are helpful to the author of this topic.
Parkinsond

Parkinsond

Level 55
Thread author
Verified
Well-known
Dec 6, 2023
4,405
11,549
5,369
Can availabele anti-virus software detect malware infecting modem router firmware?
 
Last edited by a moderator:
  • Like
Reactions: simmerskool
Typically, antivirus software is designed to protect your device's operating system, not router firmware. It's best to maintain your router's firmware updates for security.
 
Typically the answer is NO. You need to use a network scanner like Nessus or something similar (NDR???) to find vulnerable routers. Shodan is great for finding vulnerable routers on the internet. Otherwise your SOL, most routers have in built AV/EDR/NDR now but whether they can pick up infected hardware is not clear.
 
  • Like
Reactions: Nevi, Parkinsond and simmerskool
Would switching the router on/off occasionally help to mitigate against some malware?

I suspect the biggest threat comes from unpatched vulnerabilities in the router firmware, rather than malware. If the router isn’t supported any more then there may be a case for buying a new one or installing third-party firmware.
 
  • Like
Reactions: Zero Knowledge, simmerskool and Parkinsond
jetman said:
Would switching the router on/off occasionally help to mitigate against some malware?

I suspect the biggest threat comes from unpatched vulnerabilities in the router firmware, rather than malware. If the router isn’t supported any more then there may be a case for buying a new one or installing third-party firmware.
Click to expand...
Thought of manaually updating its firmware; it is available on the manufacturer's website.
Unfortunately, those who tried to replace the modified firmware by ISP failed to log in the settings page again after the upgrade.
 
jetman said:
Would switching the router on/off occasionally help to mitigate against some malware?

I suspect the biggest threat comes from unpatched vulnerabilities in the router firmware, rather than malware. If the router isn’t supported any more then there may be a case for buying a new one or installing third-party firmware.
Click to expand...
It wouldn't hurt power cycling the modem on and off. It will get rid of some malware but not all depending on how the router is exploitable and what exploits are out there.

Your right though in your second point, the problem is if the router has know exploits or vulnerabilities it will just get reinfected on reboot.

Personally I think hardware is current hot attack vector for malicious actors. ISP routers have the advantage of being supported so exploits are patched and routers updated. It doesn't mean you won't get infected but even enterprise gear is rubbish and needs constant updates. The best consumer/home routers are ASUS and Netgear imho, then you have Ubiquiti/Mikrotik which are sort of half consumer and half enterprise gear but are liked by network geeks around the world and then you have enterprise gear like Cisco/Palo/SonicWall/Fortinet/Barracuda/WatchGuard/Juniper which are useless on home networks and have just as many bugs as consumer routers.
 
Last edited:
  • Like
  • Hundred Points
Reactions: Nevi, Parkinsond, oldschool and 1 other person
Another appraoch is use a security device (eg a firewalla box) to act as your router. Your existing router could then be configured to act only as a wireless access point. Then it wouldn't matter so much if your router firmware was out of date.
I think this approach has the potential to make a home network very secure.

Firewalla: Cybersecurity Firewall For Your Family and Business

Firewalla is an all-in-one intelligent Firewall that connects to your router and secures all of your digital things. It can protect your family and business from cyber threats, block ads, control kids' internet usage, and even protects you when you are out on public Wifi. There is no Monthly Fee.
firewalla.com firewalla.com
 
  • Like
Reactions: simmerskool

You may also like...