So you think you are secure? How about your router?
Posted by: Timothy Weaver on 04/03/2014 07:14 AM
[
Comments
]
So you have updated your system and feel you are pretty secure. But did you think to update and secure your router or other embedded devices?
Trey Ford, global security strategist at security firm Rapid7, said: “Users expect a website to be authentic, and a compromised router (DSL router, gateway, wireless access point, cable modem—take your pick) allows a malicious party to undermine that trust. The trend of connecting more devices to the Internet only means there is more for attackers to play with.”
Carsten Eiram, the chief research officer at vulnerability intelligence firm Risk Based Security, echoed those sentiments: “Embedded devices like home routers are an obvious choice [as new targets for attackers]. They’re used by ‘everyone,’ the code maturity from a security perspective is usually terrible, and they have no real security mechanisms in place, making exploitation easier.”
Ilia Kolochenko, the CEO of Geneva-based security firm High-Tech Bridge, went on to say: “Right now, it would be good if people at least realized that their home routers should also be secured, as they are not just ‘devices to plug-in and forget about'. Then they can hire IT consultants from their ISPs—many offer telephone consulting and guidance for free—or ask IT-savvy friends to check if their router is secure.”
Trey Ford, global security strategist at security firm Rapid7, said: “Users expect a website to be authentic, and a compromised router (DSL router, gateway, wireless access point, cable modem—take your pick) allows a malicious party to undermine that trust. The trend of connecting more devices to the Internet only means there is more for attackers to play with.”
Carsten Eiram, the chief research officer at vulnerability intelligence firm Risk Based Security, echoed those sentiments: “Embedded devices like home routers are an obvious choice [as new targets for attackers]. They’re used by ‘everyone,’ the code maturity from a security perspective is usually terrible, and they have no real security mechanisms in place, making exploitation easier.”
Ilia Kolochenko, the CEO of Geneva-based security firm High-Tech Bridge, went on to say: “Right now, it would be good if people at least realized that their home routers should also be secured, as they are not just ‘devices to plug-in and forget about'. Then they can hire IT consultants from their ISPs—many offer telephone consulting and guidance for free—or ask IT-savvy friends to check if their router is secure.”
Comments
