Worm targets Linux routers

News Reader · Post by **News Reader** » March 26th, 2009, 16:00

Worm targets Linux routers
A new worm has been uncovered which targets routers based on the Linux operating system and makes them part of an IRC controlled botnet.

Category: News
Publish Date: Thu, 26 Mar 2009 12:45:13 +0000
Read more...

Source: bit-tech.net Feed
Description: Computer hardware, games and technology reviews and news

Stoat · Post by **Stoat** » March 26th, 2009, 16:23

So most of them then.
Probably should improve my router password.

Post by **Dr. kitteny berk** » March 26th, 2009, 16:34

I'm surprised this has taken so long, should be interesting to watch

Post by **Dog Pants** » March 26th, 2009, 17:30

I'm kind of glad that 90% of people out there are lazy or ill-informed. That means that all but the most determined virus-writers will go for techniques that are easily preventable. Still, even though I've changed the default password on my router, the thought of something brute forcing it and leaving me faced with bricking it or giving away account details gives me the fear.

spoodie · Post by **spoodie** » March 26th, 2009, 23:25

My router is of this type, but fortunately even I don't know what the password is.

cheeseandham · Post by **cheeseandham** » March 29th, 2009, 0:16

I'm with dogpants about the lazy and illinformed - it helps a lot.

I don't tend to worry about bruteforce techniques though as I generally don't even allow connection to router logons from unknown IP's.

Most people only log in from a select number of IP's, and if you are unfortunate to be on DHCP, finding out your ISP's IP range and limiting connection to that eliminates 99.99% of the net, particularly the nasty bits.
If someone does get in, you should have their time & IP - and being UK you at least have some chance of causing hassle on the IP that attacked you (or at least fixing it if it is also broken and simply a proxy)