Cybersecurity

8646 readers

238 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Be respectful. Everyone should feel welcome here.
No bigotry - including racism, sexism, ableism, homophobia, transphobia, or xenophobia.
No Ads / Spamming.
No pornography.

Community Rules

Idk, keep it semi-professional?
Nothing illegal. We're all ethical here.
Rules will be added/redefined as necessary.

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago

MODERATORS

kid@sh.itjust.works

Lanky_Pomegranate530@midwest.social

Besides them trying to upsell me a new router, what does this mean? (sh.itjust.works)

submitted 2 months ago by StarvingMartist@sh.itjust.works to c/cybersecurity@sh.itjust.works

13 comments fedilink hide all child comments

Is my network actually at any risk? Should I take any steps now that I'm not receiving security updates? This was a really expensive router and I'm going back to school so I'm definitely not going to be in the market for a new one for quite a while. Probably wouldn't be going back to tplink even if I did.

Thoughts?

you are viewing a single comment's thread
view the rest of the comments

[–] CyberSeeker@discuss.tchncs.de 5 points 2 months ago* (last edited 2 months ago)

Yes, technically. This message is saying no new firmware updates will be forthcoming for your model. The unfortunate reality, though, is that most consumers rarely update their router firmware, regardless.

There has been a very large increase in attacks on home and small business routers, which are then used for botnets and espionage. Look for articles on Small Office/Home Office (SOHO) router attacks, but here are a few:

https://www.bleepingcomputer.com/news/security/cisa-vendors-must-secure-soho-routers-against-volt-typhoon-attacks/

https://arstechnica.com/security/2024/02/kremlin-backed-hackers-are-infecting-ubiquity-edgerouters-fbi-warns/

https://thehackernews.com/2024/05/mysterious-cyber-attack-takes-down.html

https://www.malwarebytes.com/blog/news/2024/02/fbi-removes-malware-from-hundreds-of-routers-across-the-us

https://www.cisa.gov/news-events/cybersecurity-advisories/aa25-239a

https://www.cisa.gov/sites/default/files/2024-01/SbD-Alert-Security-Design-Improvements-for-SOHO-Device-Manufacturers.pdf

SOHO routers are ubiquitous and inexpensive devices that connect millions of Americans and small businesses to the internet. However, due to widespread sale, and subsequent use, of insecure SOHO routers that lack basic security features, threat actors, including the PRC-sponsored Volt Typhoon group, are exploiting these devices at scale.

If you are concerned, it may be worth investigating if your device supports OpenWRT, or upgrading to a newer router under active maintenance. I see the Netgear R6700 as supported on the OpenWRT Table of Hardware.