New VPNFilter Malware Contains Kill Switch, Infects Over 500,000 Routers

Routers are the driving force behind a lot of our modern-day internet use. They power our Wi-Fi, and therefore our internet-connected devices. We rely on them day in and out, entrusting them with some of our most personal information. So when they’re attacked, it can be cause for concern. Just today, that precise scenario has come to life, as it has been discovered that more than half a million routers and storage devices in dozens of countries have been infected with a piece of highly sophisticated IoT botnet malware called VPNFilter.

Named after the directory the malware uses to hide on an infected device, VPNFilter first makes its way into a device through a reboot. Once it’s inside, it gains a foothold on the infected device and then deploys the malware.

VPNFilter has been designed with versatile capabilities, it attacks routers and other network-connected devices in order to steal credentials and other information exchanged across the network. It even contains a kill switch for routers, which means an attack could stop internet access for any devices tapping into that router.

So far, over 500,000 devices have been infected by the malware in over 54 countries. Therefore, with this attack spreading rapidly, it’s important to take security steps immediately in order to stay protected from VPNFilter. To do just that, follow these tips:

• Update your router’s firmware. Router manufacturers are already working to make patches that will help protect users against this malware. Therefore, make sure you regularly update your router’s firmware, as these fixes are typically included within each update.
• Be careful with what information you share. Since this malware can steal the data exchanged across your Wi-Fi network, it’s crucial you get selective with the information you do share for the time being. This means personal details, such as addresses, personally identifiable information, and financial data.

And, of course, to stay on top of the latest consumer and mobile security threats, be sure to follow me and @McAfee_Home on Twitter, listen to our podcast Hackable? and ‘Like’ us on Facebook.


{
"metadata": {
"id": "943447f2-28f6-4700-afc5-dbb09c73f1ac",
"version": "1.0",
"ep": "ta",
"lang": "en-us",
"original-url": "https://securingtomorrow.mcafee.com/consumer/consumer-threat-notices/new-vpnfilter-malware-infects-routers/",
"author": "Gary Davis",
"author-page": "https://securingtomorrow.mcafee.com/author/gary-davis/",
"category": "Consumer Threat Notices",
"draft": "false",
"authordetail": "Gary Davis is Chief Consumer Security Evangelist. Through a consumer lens, he partners with internal teams to drive strategic alignment of products with the needs of the security space. Gary also provides security education to businesses and consumers by distilling complex security topics into actionable advice. Follow Gary Davis on Twitter at @garyjdavis",
"tinyimage": "https://securingtomorrow.mcafee.com/wp-content/uploads/img_1549136055998304.jpg",
"feedimageurl": "https://securingtomorrow.mcafee.com/wp-content/uploads/img_1549136055998304.jpg",
"pubDate": "Wed, 23 May 2018 12:35:48 +0000"
}
}


The post New VPNFilter Malware Contains Kill Switch, Infects Over 500,000 Routers appeared first on McAfee Blogs.