News
Netgear WNR1000v3 backdoor/bug
by Logan Rogers-Follis on May.24, 2014, under News, Techie
Friendly IT post for my techie friends:
If you have a Netgear WNR1000v3 (Firmware 1.0.2.28_52.0.60NA confirmed, maybe others?), please make sure you have Remote Access locked down or turned off. While in your router checking this please see if you have had your WAN changed (will be changed to DHCP by the bot) or your DNS set to something you don’t recognize (66.118.165.22 and 69.65.41.30 confirmed). If so change everything back to what it should be and start changing your passwords online. Looks like there is some kind of bug or backdoor that a bot is using to hack these routers. Might affect other models too, but so far I can not find any online posts about this. I have worked with 2 people and can confirm this seems to have started making rounds on Friday May 23rd.
If your have the above router and your ISP installed it, I would hope and assume they locked down Remote Access (like Action Communications does to protect their customers from these kind of hacks).
Follow or reply to my posts on Facebook or Google+ about this.
