Tuesday, 29 April 2014

Millions of broadband routers 'open to attack'

If you’re operating an SME business using domestic-grade equipment such as routers, then take heed, you may be vulnerable to attacks called Distributed Denial of Service (DDoS) , as a result of not upgrading your hardware or updating security.

We’re sharing an article we found useful recently, published by USwitch.

A study carried out by IT analysts Nominum suggests that 24 million home broadband routers could be exposing both users and broadband providers to potentially participating in the attacks. Many of these routers form part of small businesses or practices.

In February alone, the analyst calculated that 5.3 million routers were used to generate attack traffic  - a figure it expects to continue increasing as older hardware is exploited.

DDoS attacks work by overloading a target server such as a website  with huge numbers of data requests from multiple internet connected computers. These are usually computers infected with Trojans or viruses that then become part of a botnet, but cybercriminals have recently begun  targeting home broadband routers, particularly older ones that are in need of upgrading, or which have insufficient security.

Due to the way in which hackers operate, it is possible to exploit routers without even hacking them, by imitating their target's IP address and receiving data from vulnerable devices, explained Sanjay Kapoor, Nominum’s CMO and SVP of Strategy.

He explained: "Existing in-place DDoS defenses do not work against today’s amplification attacks, which can be launched by any criminal who wants to achieve maximum damage with minimum effort. Even if ISPs employ best practices to protect their networks, they can still become victims, thanks to the inherent vulnerability in open DNS proxies."

As such, broadband providers need more effective protections built-in to DNS servers, claims Mr Kapoor, who pointed out that modern DNS servers can precisely target attack traffic without any impact on legitimate DNS traffic.

It comes as a report published by the Guardian indicated that 800,000 home routers belonging to UK customers such as BT and Virgin Media could be vulnerable to such an attack, though this figure is far lower than Nominum's estimations.

If you have any concerns of would like advice or guidance, then please get in touch with our team on 0800 877 8810.

No comments:

Post a comment