- Dec 6, 2023
- 138
Can availabele anti-virus software detect malware infecting modem router firmware?
Last edited by a moderator:
Modem router security
- Thread starter Parkinsond
- Start date
Please provide comments and solutions that are helpful to the author of this topic.
Typically the answer is NO. You need to use a network scanner like Nessus or something similar (NDR???) to find vulnerable routers. Shodan is great for finding vulnerable routers on the internet. Otherwise your SOL, most routers have in built AV/EDR/NDR now but whether they can pick up infected hardware is not clear.
- Jun 6, 2017
- 479
Would switching the router on/off occasionally help to mitigate against some malware?
I suspect the biggest threat comes from unpatched vulnerabilities in the router firmware, rather than malware. If the router isn’t supported any more then there may be a case for buying a new one or installing third-party firmware.
I suspect the biggest threat comes from unpatched vulnerabilities in the router firmware, rather than malware. If the router isn’t supported any more then there may be a case for buying a new one or installing third-party firmware.
- Dec 6, 2023
- 138
Thought of manaually updating its firmware; it is available on the manufacturer's website.
Unfortunately, those who tried to replace the modified firmware by ISP failed to log in the settings page again after the upgrade.
It wouldn't hurt power cycling the modem on and off. It will get rid of some malware but not all depending on how the router is exploitable and what exploits are out there.
Your right though in your second point, the problem is if the router has know exploits or vulnerabilities it will just get reinfected on reboot.
Personally I think hardware is current hot attack vector for malicious actors. ISP routers have the advantage of being supported so exploits are patched and routers updated. It doesn't mean you won't get infected but even enterprise gear is rubbish and needs constant updates. The best consumer/home routers are ASUS and Netgear imho, then you have Ubiquiti/Mikrotik which are sort of half consumer and half enterprise gear but are liked by network geeks around the world and then you have enterprise gear like Cisco/Palo/SonicWall/Fortinet/Barracuda/WatchGuard/Juniper which are useless on home networks and have just as many bugs as consumer routers.
Last edited:
- Jun 6, 2017
- 479
Another appraoch is use a security device (eg a firewalla box) to act as your router. Your existing router could then be configured to act only as a wireless access point. Then it wouldn't matter so much if your router firmware was out of date.
I think this approach has the potential to make a home network very secure.
firewalla.com
I think this approach has the potential to make a home network very secure.
Firewalla: Cybersecurity Firewall For Your Family and Business
Firewalla is an all-in-one intelligent Firewall that connects to your router and secures all of your digital things. It can protect your family and business from cyber threats, block ads, control kids' internet usage, and even protects you when you are out on public Wifi. There is no Monthly Fee.
firewalla.com
Similar threads
