34 Internet Routers

There is a small computer in every household and business which is connected to the internet that is often ignored when it comes to security; you know it as a router or ADSL modem. This little box is the literally the gateway to the internet and everything you do online passes through it. Recently, cyber criminals have been focusing on attacking not only the computers we all use, but also the routers, using known vulnerabilities and remote access meant for support. A comprised router can redirect users to fake websites even though the correct address is typed, which allows the criminals to steal online credentials for any services they choose. Some router malware is even self-replicating, sending itself out to other routers just like a virus.

Updating the operating system on a router (known as firmware) is not as easy as updating your computer. Most routers are never updated from the original system they shipped with, unless they are managed by your (ISP) internet service provider or have an automatic update feature. If your router is a couple of years old, I recommend contacting your ISP and seeing if you are eligible for a new router, even if the router is managed by them. At worst, ask them for a list of supported routers if they do not offer you one and buy one yourself. Many of the latest routers have improved Wi-Fi, security features and other improvements, as well as fixes to known vulnerabilities. 

Whatever you decide to do with your router, you will need to change the default password for the built-in admin account, unless your router comes with a unique password already set (you can tell if the password is unique if it's set to something impossible to remember). Many newer routers actively prompt you to do this the first time you login into the admin area. If you have to, write your new password on the underside of your device, while not ideal, you are mainly protecting yourself from people who do not have physical access to your router. If you are not sure what the default username and password is for your router, you can look it up at: www.routerpasswords.com

If you need to update a router, please refer to the manufacturers’ website for support and save screenshots of each settings page, in case you need to re-enter any details. Please remember that downloading and installing any incorrect firmware could stop your device from working, so don’t choose any updates unless they are listed against your country as well as the model number of your device.

You may have seen in the news reports of a worm virus called Mirai that remotely infects broadband routers, turning them into members of a botnet used in Denial of Service (DDoS) attacks. Over 900,000 routers from Deutsche Telekom were infected in Germany and over 150,000 in the UK, used by internet providers TalkTalk and the Post Office. Symptoms may at first appear to be nothing more than a slower connection, but in TalkTalk’s case, personal details were accessed and 15,656 bank account numbers and sort codes were stolen. Criminals can then use this information to make very convincing telephone scam calls or sell on the information to other criminals. By changing the router’s DNS entries, the criminals can steal credentials and trick you into installing additional malicious viruses on your computer. Using systems like OpenDNS will give you a certain amount of protection so long as all your devices are using it, (see Chapter 34 Parental Control Software for more info) as you will not be using the router settings. If you have any concerns, please contact your internet service provider for advice.

Index or next chapter Parental Control Software