FBI advises Americans to reset their routers
Last week, we reported how the FBI had seized a key domain to the botnet VPNFilter. That story continued yesterday when the Bureau publicly asked all US residents to reboot their routers. The advice comes with the knowledge that while VPNFilter can take control of a router, part of the malware can be easily kicked off the system with a simple reboot — turning the device off for a moment. This renders the malicious program harmless, though the router can be reinfected. To prevent that, users are also advised to make sure the router’s security is fully up to date and the password has been changed from the default to a suitably complex one. The malware attacks many kinds of routers, most notably Linksys, MikroTik, Netgear, and TP-Link. Each of those companies have posted further detailed instructions to combat VPNFilter on their websites.
To showcase what it can actually do for you, we’ve tested the before and after situation on typical phones. Check out the results!
The FBI recently issued an immediate call-to-action for every small office and homeowner out there: power cycle (reboot) your router ASAP. The malware is coming. Chances are your router might be hiding in plain sight — you probably take it for granted since it just does its thing — but it needs your attention, and the sooner the better. If you are like many, you don’t always update your router firmware (only 14% of those recently surveyed have done so). Or, change the default administrator password (only 18% of those recently surveyed have done so) according to Broadband Genie. But, this time, you really need to.
If you’re in the area, come visit us at the Privacy & Security conference taking place this Wednesday and Thursday in The Hague. Avast is a proud sponsor of the GSMA Mobile 360 Series, showcasing relevant discussions for mobile network operators (MNOs), but actually important for any business in the wider digital ecosystem. The two-day gathering of industry leaders will focus on the latest evolving cyberthreats and their respective solutions. GSMA organizers deliberately scheduled the event to take place just as the new GDPR rules and regulations kick in and online privacy is a key concern for people around the world.
Do you ever get the feeling you’re being watched? Guess what — every time you pull out your smartphone or tablet and surf the internet, you are. The websites you visit, the items you browse and buy, the videos you stream, and where you were located when you did it. All of this paints a picture of who you are, what you do, and what interests you — all vital information to advertisers and marketers.
Online privacy is under the microscope, no doubt about it — first the US lost net neutrality, then the news breaks about Cambridge Analytica and 87 million Facebook users, and then we’ve got the GDPR which just took effect last week. Amidst all this opining, lobbying, arguing, and defending, it’s interesting to see who is riled up about the matter and who is not. How concerned are YOU about having your privacy protected online?
As the GDPR took effect in Europe yesterday and privacy continues to be an important issue throughout the world, we took this opportunity to update our own privacy policy because we want our users to clearly understand what data we collect and what we …
BMWs at risk of hacking
BMW is in the process of issuing security patches to drivers of its 2017 i3, 2016 X1 and 525Li, and 2012 730Li. The patches will cover fourteen newly-discovered vulnerabilities, four of which can be triggered only through physical connection to the car computer systems, while another four require USB connection to the car. The remaining six vulnerabilities can be exploited remotely. A diligent cybercriminal can gain access to the cars’ infotainment systems, T-Box components, and UDS communication. In light of the findings, BMW has embraced the value of third-party cybersecurity research, and they are working on fixes.
For anyone in the cybersecurity industry, 2018 began on January 3rd — the day a trio of CPU bugs was announced. What trio? You probably recall Meltdown and Spectre, but from our perspective, the latter bug is really two for the price of one. While Meltdown and Spectre both got plenty of coverage in media outlets and security blogs around the globe (yes, that includes us, too), there’s an important distinction to make and more to say on this matter.