acm-header
Sign In

Communications of the ACM

ACM TechNews

277,000 Routers Exposed to Eternal Silence Attacks via UPnP


Universal Plug and Play-capable routers may be at risk.

Credit: bleepstatic.com

Analysis of 3.5-million Universal Plug and Play (UPnP)-capable routers estimated that 277,000 are vulnerable to the so-called "Eternal Silence" campaign, which converts the routers into attack platforms.

Researchers at cybersecurity company Akamai found 45,113 exposed routers already have been infected by the UPnProxy exploit.

"There is a decent possibility that (vulnerable) machines unaffected by the first round of EternalBlue and EternalRed attacks were safe only because they weren't exposed directly to the Internet," the researchers said.

Eternal Silence is crafty because it neutralizes network segmentation, and gives no indication of what is happening to the victim.

Akamai recommends users scan all endpoints and audit network address translation table entries, and reset the device if it appears to have been compromised.

From BleepingComputer
View Full Article

 

Abstracts Copyright © 2022 SmithBucklin, Washington, DC, USA


 

No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account