Chinese Hackers Exploiting Internet Routers and Installing Malware to Compromise Networks: Report
If you have an internet router that is out of date or out of date, you should be careful, as a new report claims that Chinese hackers are targeting them to install backdoor malware to compromise networks.
As reported by Check Point Research, a hacker group called Camaro Dragon is planting malware on TP-Link routers, including a backdoor called “Horse Shell.” This backdoor agent can give hackers full control over the infected device. it remains undetected and continues to access compromised networks.
The attacks are said to be targeting European foreign affairs units and are said to be “sponsored by the Chinese state”.
According to the report, larger, more ambitious attacks are being carried out using router implants. “Router implants are often installed in arbitrary devices without special interest, with the intention of creating a chain of nodes between key infections and actual command and control,” the report says.
Simply put, hackers infect routers to create a framework that makes it easier to achieve the “greater goal”.
However, it is currently not certain how the hackers gained access to TP-Link devices and infected them with malicious implants – but it may be possible that the hackers gained access by deliberately scanning them for known vulnerabilities or by targeting the devices with weak passwords.
Moreover, the attacks are not limited to TP-Link routers, products from other manufacturers are also vulnerable. So always choose strong passwords, update your device to the latest software available, and update your router too – as manufacturers may have released patches to fix vulnerabilities.
Read all the Latest Tech News here.