Skip to main content

Slingshot malware that attacks routers may be state-sponsored espionage tool

Keeping up with security updates for our various connected devices could be a full-time job. Whether it’s our smartphones, our PCs, our home assistants, or other devices, seemingly not a day goes by that we don’t hear about one security vulnerability or another. This time around, it’s the most central device in our networks, the router, that’s under attack.

Kaspersky recently reported on a new, fairly sophisticated, attack on MikroTik routers that its researchers described during the company’s Security Analyst Summit. Dubbed Slingshot, the vulnerability is a rather tricky piece of malware that can collect all kinds of information from PCs that are attacked via a compromised router — including screenshots, passwords, keyboard data, and other information.

While Kaspersky notified MikroTik of the issue and that company has already resolved the vulnerability, Kaspersky believes that other routers could still be affected. What makes Slingshot so potentially dangerous is that it piggybacks on legitimate router downloads and file executions — in this case, DLL files — which are used to infect PCs with kernel-mode malware that runs on affected machines without causing crashes. This malware, dubbed Cahnadr, joins with another piece called GollumApp that gives attackers “complete control” over a PC.

Digging into the details of the vulnerability, it’s obvious that the malware is particularly sophisticated, so much so that Kaspersky’s researchers suspect it’s the work of a group that’s highly organized, professional, and indeed likely to be state-sponsored. Given the kind of information that the malware seeks out, it’s also likely that it’s designed to perform cyber-espionage, and given that it can access the system at a very low level it’s capable of stealing any kind of information that exists on an infected PC.

There’s nothing we can do in response to attacks like Slingshot other than the single most important step: make sure that all of our devices are fully updated. Installing all OS and hardware updates is more important than ever, and that’s true not just for the most visible devices we use every day, like our smartphones and PCs, but also those hidden devices like routers that can serve as attack vectors for every other device on our networks.

Editors' Recommendations

Mark Coppock
Mark has been a geek since MS-DOS gave way to Windows and the PalmPilot was a thing. He’s translated his love for…
Best Alienware deals: Gaming PCs, laptops, and monitors
Alienware Aurora R15 placed at an angle on a table.

If you're looking to pick up a new gaming laptop, gaming PC, headset, or even a gaming chair, Alienware has a huge variety of items on offer for you, with some really high-end gear that is synonymous with the brand. That said, you do tend to pay a premium price for Alienware, given its position in the market as the maker of fancy gear, so if you want to pick something up, you'll likely want to rely on a good deal. Luckily, there are a lot of excellent deals floating around on Alienware products, and we've gone out and collected some of our favorites below, although if you can't quite find what you are looking for, check out these great best gaming laptop deals and best gaming PC deals as well.
Alienware AW720H wireless gaming headset -- $130, was $150

A gaming headset is a great way to keep in touch with your friends while you play. The Alienware AW720H gaming headset lets you do so without the burden of wires, as it connects to your gaming setup via Bluetooth. It has a built-in microphone for outgoing communications, as well as Dolby Atmos, Surround Sound, and Stereo Sound options to help immerse you in the game and incoming communications.

Read more
Is Dashlane safe? Here’s what we know about its security history
Dashlane website on a laptop.

If you’re looking for a password manager and come across Dashlane in your search, you’re probably wondering how safe it is to use. After all, similar companies and products have made headlines and become well-known for security incidents.

Here, we’ll look at the security measures Dashlane uses for its infrastructure, as well as safety features it provides to its users. You can then decide how safe you would feel using Dashlane as your go-to password tool.
What is Dashlane?

Read more
Nvidia ARM laptops may be in the works, and that could change everything
Intel and Nvidia badges on the Asus ROG Zephyrus G16.

Imagine a laptop with an iteration of Nvidia’s ARM-based CPU combined with a powerful RTX graphics card, all enhanced by AI. Years ago, that would have sounded outlandish, but now it seems like it could actually happen.

In a recent interview with Bloomberg, Nvidia CEO Jensen Huang and Dell CEO Michael Dell more or less confirmed that Team Green will enter the AI-PC hype next year.

Read more