including possible information gathering, device operati, and network traffic blocking, "according to the FBI's Internet Complaints Center . It can potentially render routers unusable, and is difficult to detect due to the use of encrypti and "unavailable networks".
Restarting a router will not kill the malware, but temporarily disrupt it and may help identify the affected hardware, said the IC3. As a precauti, people may want to disable remote management, use original secure passwords and make sure they have been updated with the latest firmware.
The security firm Symantec indicates that the target was originally Ukraine. . Symantec stated: "Affected routers and Network Attached Storage (NAS) devices are known to include:
- Linksys E1200
- Linksys E2500
- Linksys WRVS4400N
- Mikrotik RouterOS for Cloud Core Routers: Versis 1016, 1036 and 1072
- Netgear RG8000
- Netgear R64000
- Netgear R7000
- Netgear R8000
- Netgear WNR1000 [19659009] Netgear WNR2000
- QNAP TS251
- QNAP TS439 Pro
- Other QNAP Devices NAS Running QTS Software
- TP-Link R600VPN
The Department of Justice has identified the authors as the "Sofacy Group", which passes …
