Skip to main content

Researchers warn of serious security flaws in home routers

People's home routers are being targeted by cyber criminals who are able to easily exploit their security failings, researchers claim.

Vulnerabilities in Linksys and Asus routers have been found by researchers, with thieves able to compromise the settings in order to steal money.

Researchers at Poland's Computer Emergency Response Team (CERT Polska (opens in new tab)) claim that criminals are targeting the routers of e-banking customers in order to steal their online login information.

The team reported that late last year a large-scale attack was carried out by thieves by infecting vulnerable routers with malware.

Linksys has issued advice to customers on how to secure their routers and help prevent them from getting infected.

"Linksys is aware of the malware called The Moon that has affected select older Linksys E-series Routers and select older Wireless-N access points and routers," the firm wrote in a blogpost on its website.

"We will be working on the affected products with a firmware fix that is planned to be posted on our website in the coming weeks."

Owners of Asus routers were greeted with a text file on their hard drives last week that warned them of vulnerabilities to their routers.

"Your Asus router (and your documents) can be accessed by anyone in the world with an internet connection," the message read.

"If you are reading this, you are vulnerable too. Solution: Completely disable 'FTP' and 'Aicloud' immediately. I hope we helped."

It is thought that this message was left there by hackers aiming only to highlight the security flaws, not exploit them maliciously.