D-Link routers are attacked by hackers

Your router is the key to the home Internet. All other devices must connect to the router for Wi-Fi, so make sure all security protocols are in place. Hackers breaking into your router can cause serious problems. Tap or click here for five reasons to replace your router.

The gateway to valuable information is a lucrative prospect for any cybercriminal, and a group is now using a new variant of malware to carry out their crimes.

Read on to see how this malware works and how to protect your router.

Here is the backstory

Last year, Fortinet security researchers discovered malware in Hikvision security cameras. Hackers used the Mirai malware to launch strategically distributed denial of service (DDoS) attacks. These attacks flood a network, crippling it under the pressure of multiple data requests.

However, the malware has been updated, and Palo Alto Network Unit 42 researchers have spotted the latest version at work. A blog post explains that the MooBot variant specifically targets D-Link routers and exploits these vulnerabilities:

  • HNAP SOAPAction Header Command Execution Vulnerability.
  • SOAP interface remote code execution vulnerability.
  • Remote command execution vulnerability (two versions).

The hackers’ end goal is the same as before, trying to incorporate as many routers into a massive DDoS attack. Although criminals may not necessarily be looking for your private data, it can give them insight into valuable information.

What can you do about it

Unit 42 alerted D-Link to the flaws through Responsible Vulnerability Disclosure. As a result, the company has rolled out several security patches to fix the errors, but some users may still have unpatched routers.

D-Link router faults include:

  • D-Link Wireless N Home Router with SmartBeam Technology (DIR-645).
  • Wireless AC1900 Dual Band Gigabit Cloud Router (DIR-880L).
  • D-Link Wireless AC1200 Dual Band Gigabit Cloud Router (DIR-860L).
  • Wireless AC1000 Home Cloud Dual Band Broadband Router (DIR-820L).
  • D-Link Wireless AC750 Dual Band Cloud Router (DIR-816L).

If you have D-Link routers, you should update the firmware as soon as possible. Unfortunately, the vulnerabilities also affect several routers that have reached end of life support, so no patch is available. You can find a list of all retired routers on D-Link’s site.

Here’s how to update your router’s firmware:

  • Go to the D-Link support website.
  • Enter your router model number in the search field. (REMARK: You can find your model number printed under your router.)
  • Click on the router you have.
  • Under the Downloads tab, find the latest firmware version, click To download and save the file to your desktop.
  • So, connect to your router through a browser. The address is usually http://dlinkrouter, http://dlinkrouter.local or
  • Enter your administrator username and the passwordand click Manual Setup.
  • Click on the Maintenance tab at the top of the page, then click Firmware update in the left menu.
  • Below Firmware updateclick it Browse and locate the downloaded firmware file that you saved to your desktop.
  • Finally click on To download to update the firmware.

Keep in mind that installing the firmware should take a few seconds and your router will likely need to be restarted afterwards.

keep reading

Five reasons to replace your old router

Where to Place Your Router for Best Speeds

Harry D. Gonzalez