What you should know about VPNFilter Malware…
Symantec posted an alert yesterday (23 May 2018) entitled “VPNFilter: New Router Malware with Destructive Capabilities” that details a “new threat which targets a range of routers and NAS devices … capable of knocking out infected devices by rendering them unusable.” (https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware).
Luxul’s number one concern during an alert like this is the protection of its customers.
“We are investigating this Malware as it pertains to Luxul products. At this time we haven’t heard any reports nor are we seeing any effects of this Malware to our products. If this changes we will be communicating to our customers immediately,” says Dan Haab, Vice President of Design Engineering & Product Innovation at Luxul.
The alert from Symantec also indicated that “most of the devices targeted are known to use default credentials and/or have known exploits, particularly for older versions.” Luxul recommends that dealers follow industry best practices, including changing administration passwords during installation to not be the default and to work with customers to change already installed routers’ passwords periodically. It is also highly recommended that router software is regularly updated. Luxul provides industry leading tools to assist dealers in servicing their customers’ networks for such activities.
An update posted today (24 May 2018) by Symantec indicates the “FBI has announced that it has taken immediate action to disrupt the VPNFilter, securing a court order, authorizing it to seize a domain that is part of the malware’s command-and-control C&C infrastructure.”
Be sure to follow Luxul on social media or sign up for their mailing list to be informed of any updates for this particular malware.