New Router Malware Said to Inject Porn into Webpages
Gabriel Roşu / 10 years ago
Security experts are said to have found a new type of malware that attacks routers and injects unwanted ads and pornography into websites by modifying the router’s DNS settings.
While the malware can hijack nearly every website on the internet, it is said to be mostly used to peddle porn sites. The malware has been discovered by Ara Labs, which states that it intercepts the Google Analytics code found in most websites and redirects requests to the attacker’s server and sends back ads and porn in response.
Due to the nature and way of injecting itself into websites, the malware is the perfect target for a vast pool of websites on the internet. Almost every website out there uses Google Analytics for traffic statistics, which makes it the perfect target for this sort of DNS attack.
The hackers are said to install the malware by (yet again) exploiting the fact that people don’t change their router’s default login credentials. Ara Labs did not specify what routers are being affected by the malware, but recommends users update to the latest firmware from the manufacturer’s website and change the default login credentials. This apparently is enough to keep users and their systems protected.
Also, anti-virus software will not pick up the router-based malware since it will not install anything on an end-user’s PC or laptop, making it the perfect silent stowaway.
Thank you Fudzilla for providing us with this information