Skip to main content
  1. Home
  2. Computing
  3. News

Hacker infects 100K routers in latest botnet attack aimed at sending email spam

By

Linksys WRT3200 ACM router review
Bill Roberson/Digital Trends

A hacker managed to exploit a five-year-old vulnerability in home routers to create a botnet affecting approximately 100,000 home routers. The botnet was initially discovered in September by researchers from the Netlab team at Qihoo 360, a Chinese internet security company, and it’s likely that the hacker is leveraging this network of compromised routers to send spam emails.

Recommended Videos

The botnet was built on a 2013 vulnerability on Broadcom’s UPnP SDK. This SDK, which is used on numerous routers, allows an attacker to conduct a remote attack and execute malicious code without requiring any authentication. “It’s the worse kind of vulnerability that exists in the world of Internet-connected devices,” ZDNet reported.

Though this latest botnet, which is known as BCMUPnP_Hunter, isn’t the first to exploit this vulnerability, it is the first to use what appears to be new source code to infect routers. Most Internet of Things botnets today use code that has been leaked online to carry out their attacks, but researchers claim that they have not seen similar code to that used on BCMUPnP_Hunter, suggesting that the hacker is authoring new code for the attack. Prior to BCMUPnP_Hunter, a widely reported Russian malware had infected routers worldwide, prompting the FBI to issue a warning to consumers to reset their routers.

In carrying out the attack, Netlab security researcher Hui Wang said in a blog post that the bot “has to go through multiple steps to infect a potential target.”

A proxy is able to communicate with popular mail servers, such as Outlook, Hotmail, and Yahoo! Mail. Because of this, Wang’s team believes that the attacker is using the botnet to send out spam. Additionally, the number of affected routers has steadily grown in the past few months, with a potential to infect 400,000 routers. “Altogether,we have 3.37 million unique scan source IPs,” Wang said. “It is a big number, but it is likely that the IPs of the same infected devices just changed over time.”

BCMUPnP_Hunter affects routers worldwide with Broadcom’s UPnP feature enabled, but India, China, and the U.S. are among the largest targets. A fix hasn’t been reported yet to combat this latest botnet infection.

Topics
Chuong Nguyen
Chuong Nguyen
Former Digital Trends Contributor
Silicon Valley-based technology reporter and Giants baseball fan who splits his time between Northern California and Southern…

Editors’ Recommendations

Apple could soon fix Wi-Fi access woes across all your devices
Setting up Wi-Fi on an iPhone.

One of the biggest hassles while traveling is the hunt for a decent internet connection, and then getting it to work across all your devices. The conundrum is now mainstream across hotels, lodges, and coffee shops — essentially all the establishments a person is supposed to spend a few hours of their day, but needs to fill a web form first before they can get internet access.

Apple will soon put an end to those Wi-Fi registration struggles. According to Bloomberg, the company is working on “a system that can synchronize captive Wi-Fi access details across the iPhone, iPad and Mac.”

Read more
I found an app that overhauled my Mac’s audio, and I wish I found it sooner
People with headphones listening to Spotify on a MacBook.

Apple’s macOS is a brilliant operating system, but there’s one thing it handles pretty poorly: audio. It’s such a fundamental part of any computing experience, yet it’s left me feeling disappointed, despite going through a ton of macOS updates over the years.

Sure, macOS has some audio controls, but they’re fairly basic. There are sliders for volume and left/right balance, options for which speakers to play sound effects out of … and not a huge amount more.

Read more
4 things I’m excited about in the new Microsoft Surface laptops
Microsoft Surface Laptop Studio 2

Microsoft's new Surface laptops have arrived, and they're more than just routine refreshes. According to Microsoft, powered by Snapdragon X processors and built for the Copilot+ AI experience, they promise significant battery life, performance, and usability improvements. After reviewing the key updates, here are four standout features that make Microsoft's latest Surface laptop worth the upgrade.

Better battery life

Read more