Security News > 2020 > April > Attacks on Linksys Routers Trigger Mass Password Reset

Attacks on Linksys Routers Trigger Mass Password Reset
2020-04-17 19:37

Researchers identified the attack last month, and earlier this week Linksys hit reset on users of its Linksys Smart Wi-Fi application to mitigate against future and past attacks.

Linksys representatives told Threatpost that customers are being notified gradually and that all customers should be made aware of the incident and forced password reset "Over the next week or so".

Bitdefender said, of the recent attacks, it can't say for sure if the compromised Linksys routers were part of a series of brute-force credential attacks.

Linksys has stated that the routers were compromised via brute force attacks.

The Linksys Smart Wi-Fi accounts "Enable users to remotely dial into their home network from a browser or mobile device, by using a Linksys cloud account that can be accessed from outside the home network. Since most of the targeted routers seem to involve this particular manufacturer, it's plausible that this is also an attack vector that attackers exploit," researchers said.


News URL

https://threatpost.com/attacks-on-linksys-routers-trigger-mass-password-reset/154914/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Linksys 27 0 5 24 8 37