Secure your router: How to help prevent the next internet takedown

[Batu69]

 

Who knows what evil lurks in the hearts of webcams? After the Dyn DDoS last month, this is a question on the minds of a lot of security people. Someone recently asked me if we shouldn’t adopt a new name for the Internet of Things (IoT) because the existing term is too vague.

 

I responded that this vagueness was in fact the desired effect; many people have little to no understanding of how many devices in their house are now interconnected. This leaves us surrounded by things that are effectively web-enabled computers, which most people don’t even know need to be secured.

 

So what do you need to do to help secure your devices, to decrease the chances of their being used for ill? There are a few things you can do, regardless of whether you know exactly which devices need protecting. You may be able to improve the security of the IoT devices themselves, which is ideal if the device is one that will accompany you in your daily travels.

 

But tightening up the settings on your router can help protect all of your devices while they are in your home.

 

Change the default username and password

Routers and IoT devices often ship with default credentials that are easily found with a quick trip to your favorite search engine. Use the web page or app provided by your router’s manufacturer that allows you to adjust settings. Change both the username and the password to something strong and unique. IoT devices may also allow you to change your username and/or password, and you should do so if you can.

 

Disable Universal Plug and Play (UPnP)

Unless you specifically know you need to use UPnP, you should disable this option in your router settings. If this is not a service that you know that you use, it’s unlikely you will notice any difference after disabling it. Leaving this feature enabled allows people to access your network without authentication.

 

Turn off remote management

By turning off remote management (it may also be called something like “Web Access”), physical access to the router will be required to change its settings.

 

Change the name of your access point

Choose a name that doesn’t make it obvious what type of router you’re using, or whose access point it is. While this isn’t something that makes a huge difference in your security, it’s usually a very easy change and it does make it a little bit more challenging for attackers.

 

Require a password for your Wi-Fi connection

Allowing people to connect to your Wi-Fi without a password invites misuse, so use strong encryption (WPA2 is best) to limit the number of people able to use your access point. Choose a good password, and don’t post it where people can see it.

 

Update the software on your router and IoT devices

Most people don’t know to check their router or IoT devices for security updates at all. If you don’t get prompted to apply security patches as soon as they become available, set an item on your calendar to prompt you to check for updates on a monthly or quarterly basis.

 

Research your purchases

If you’re considering buying a new router or device, a little extra research can help you improve the odds of getting one that was designed with security in mind from the beginning (or at least one that doesn’t have too many existing problems).

 

Read reviews

Read online reviews of routers and IoT devices before purchasing them, with an eye towards ease of use, especially where security features are concerned. While it’s possible to tweak any router to make it more secure, if you don’t want to get into the nitty-gritty to accomplish that – such as installing 3^rd party router software – intelligible configuration software is a necessity. IoT devices are enough of a novelty that alternate software is not yet an option, so it’s even more important for them to be easy to secure.

 

Check for known vulnerabilities

Search for vendors and specific products on CVE Details to see if they have known vulnerabilities. If the product you’re considering has vulnerabilities, you can do a search for the specific CVE number to see if a patch is available. Naturally, it’s best to avoid devices that have issues with ongoing, unpatched security holes.

 

Check for known issues

Search for vendors on the Better Business Bureau site to see if other customers have reported issues, or if there are government actions against the company. Use your favorite search engine to look for the product or vendor name with the word “recall” to see if there are any recalls under way.

 

Peruse the vendor’s website

Look at the vendor’s website to find their privacy policy, to see if it’s easily readable and clear. While you’re there, look for a responsible disclosure policy, as this can indicate that a vendor is willing and able to quickly address issues as they’re discovered.

 

While it’s unlikely that your home devices played a part in last month’s DDoS attack, it is entirely possible that this event was just a preliminary test. If businesses bolster their security and return recalled devices, and if we all start hardening our devices at home, we can decrease the number of devices available for miscreants to use in their next attempt.

 

Article source

[nIGHT]

My ISP's provided-router is china made! Grrr!

[tiliarou]

1 hour ago, nIGHT said:

My ISP's provided-router is china made! Grrr!

And so ? What's your point ? Everything (almost) is made or assembled in China, it doesn't mean that it's bad...

[UnknownOne]

You should always purchase your own router and configure it yourself.. the main issue really was unpatched, easily guessable passwords and default security on 'things' If your isp provides your router maybe you could ask for an updated one due to what is going on lately.. in routers there can sometimes be three default usernames / passwords in your router.. check this .. as some have changed say admin but not user some even have guest too.. research your model or just take a look in your settings.. as for other devices.. rtm..

[nIGHT]

The point is this is a generic ODM chinese modem.

The bottom sticker, it's chinese! I can't read it.

The setup configuration is generic. Too generic.

There's nothing I can use to identify this modem/router.

This one is chinese without a brand, never realize it til now.

A chinese product without a foreign brand and not managed/quality tested by foreign company, except huawei and zte, is very very unrealiable.

That is how we speak here to identify chinese product.

When we say it's branded, chances are it is made/assembled in china, that is ok.

But when we say it's china-made, we are pointing it is ODM, probably a bad clone (pirated copy) of something.
 

When that manufacturer is contracted/ or under a foreign company, they are trained and taught strict quality testing.

Like Nike brand (shoe), that factory is not only producing for the U.S. company Nike but also making/selling a copy of the shoe.

They are alike and done in every way, the leather, fabric, lace, the rubber, except the inverted check mark,

That is ok since it is manufactured by same factory. Quality is the same whether original or the copy.

When it is china-made or pirated copy not branded (we call it that way, local chinese talks like that), it means they tried to poorly clone a foreign product by reverse engineering. That is not good. Do not buy or use those especially electronics, it might cause fire.

 

Going back to modem/router, how do we know which brand and model they tried to copy it?

So which firmware are we going to search if there is an update or a security issue we should be aware of?

These kind of chinese manufacturers won't tell you since they are not paying royalty to produce it.

 

I asked my ISP already if I can use a different router that I will buy and told me that is not allowed,
I remember when I was with the other ISP, all the modem/router they gave me had those brands and model no. printed on them in english.

I can even connect it using my own router/wifi. The router on my old ISP does not have WIFI.

No wonder my internet connection is erratic.

I just complained last week and they told me they are making upgrades in the system.

Upgrade my a$$.

I'm going back to my old ISP.

[nIGHT]

I know my post is already long but for the sake of information here it is.

Apple has a manufacturing in china that produces their iphone.

When foreigners who were in china that time iphone 4 (if i'm not mistaken about the model) launcedh they lined up in front of the Apple store to buy.

Some of them were offered, while they were standing in the line, if they are interested to buy authentic apple iphone 4.

Some of them believe, some bought it and some didn't.

Was it original Apple iphone 4or a pirated copy?

That is, it depends if they listened well to how it was being marketed.

The first is this is Apple iPhone Made in China means this is made in the very same factory of Apple producing real iphone 4.

How they pulled this off when this product not included in the inventory of Apple iphones?

This comes from the assembled damage goods that is produce during production and then package it which becomes "reconditioned product" and exchange it for the real one that is really in good condition in the Apple iphone inventory. WTF? Yap! They got reputation to protect too! Lol! So, the pirated is now a better product than the one Apple might be selling.

When apple customers received their iphone and is damage a month after use they can just avail of warranty. Right? lol.

The other type is Apple iPhone china made. Was it the latest? Of course! they are just trying to sell it to you know so that should be the latest. Right?

There are also two types in this scam.

First, it is just a replica of the iPhone 4 casing without the circuit board, camera, battery, it is a hollow casing only inside a replica of Apple iphone 4 box.

Second, it is not real Apple iPhone 4, the casing is the latest Apple iPhone 4 but it is actually an android phone.

I love android smartphone. don't get me wrong on that, but you want Apple iphone 4 right? so you are fooled. Get it?

 

 

 

 

[DKT27]

@nIGHT: There are many ways you can track your router. First is to take a photo of it and post online asking for some information another is to take a screenshot of the router page and post it. There are people out there who literally work only on routers, they know each and every thing about it. In addition, you can try to find information about it in the router logs if there are any.

 

If nothing like that works, install this app on your phone and follow the instructions given for it.

[nIGHT]

@DKT27 Thanks for helping but I already cancelled my subscription, they are going to pick my modem today. I still have two 3g/4g dongle. I already re-applied to my old ISP (wired DSL) back. They said they will approve it in 3-7 days. This ISP is giving me a headache, it's been more than 2 weeks I couldn't play online. That's why I'm spamming here in this forum.