Earlier this week security experts disclosed details on seven vulnerabilities impacting Dnsmasq, “a popular DNS software package that is commonly deployed in networking equipment, such as routers and access points,” reports ZDNet. “The vulnerabilities tracked as DNSpooq, impact Dnsmasq, a DNS forwarding client for *NIX-based operating systems.” Slashdot reader Joe2020 shared Help Net Security’s quote from Shlomi Oberman, CEO and researcher…
Tag: D-Link
D-Link Made a USB Adapter that Adds Wi-Fi 6 To Your Laptop
D-Link is trying to make it simple to give your computer a Wi-Fi upgrade. From a report: The networking company has announced what it’s calling an “industry-first” Wi-Fi 6 adapter built into a USB stick. Plug it into your laptop or desktop computer, and you may be able to get better performance than from your older Wi-Fi chip. The adapter advertises…
Over 100 Wi-Fi Routers Fail Major Security Test — Protect Yourself Now
schwit1 shares a report from Tom’s Guide: Using its own analytical software, the [Fraunhofer Institute] tested the most recently available firmware for 117 home Wi-Fi models currently sold in Europe, including routers from ASUS, D-Link, Linksys, Netgear, TP-Link, Zyxel and the small German brand AVM. The models themselves were not physically tested. A full list of the tested models and firmware…
Linksys Asks Users To Reset Passwords After Hackers Hijacked Home Routers Last Month
Router vendor Linksys has locked user accounts on its Smart WiFi cloud service and is asking them to reset passwords after hackers have been observed hijacking accounts and changing router settings to redirect users to malware sites. From a report: Linksys’ decision only impacts Smart WiFi accounts. Linksys Smart WiFi is a cloud-based account system that lets device owners connect to…
D-Link Home Routers Open To Remote Takeover Will Remain Unpatched
D-Link won’t patch a critical unauthenticated command-injection vulnerability in its routers that could allow an attacker to remotely take over the devices and execute code. Threatpost reports: The vulnerability (CVE-2019-16920) exists in the latest firmware for the DIR-655, DIR-866L, DIR-652 and DHP-1565 products, which are Wi-Fi routers for the home market. D-Link last week told Fortinet’s FortiGuard Labs, which first discovered…
Huge Survey of Firmware Finds No Security Gains In 15 Years
A survey of more than 6,000 firmware images spanning more than a decade finds no improvement in firmware security and lax security standards for the software running connected devices by Linksys, Netgear and other major vendors. The Security Ledger reports: “Nobody is trying,” said Sarah Zatko, the Chief Scientist at the Cyber Independent Testing Lab (CITL), a non-profit organization that conducts…
D-Link To Undergo Security Audits For 10 Years as Part of FTC Settlement
D-Link has agreed to a settlement with the US Federal Trade Commission in regards to a 2017 lawsuit in which the US government agency accused the Taiwanese hardware maker of misrepresenting the security of its devices and ignoring vulnerability reports. From a report: As part of the settlement, D-Link has promised to implement a new software security program for its routers…