Originally Posted By: OVERKILL
Originally Posted By: alarmguy
Again, dont get me wrong, Im big on security, but this is a small issue right now.
Yes, it is presently small, but the company that discovered it was concerned enough to release the information I provided in the OP.
I think really, that this brings into focus the bigger issue at play here, which is the rot-on-the-vine approach many of these companies take with the support for their devices, which is what allows this sort of thing to spread in the first place.
There are hundreds of known vulnerabilities in consumer router firmware from various manufacturers that will likely never be patched because that product is no longer "current". On top of that, even devices that are, most of them require manual updating, a process which most consumers are in no way familiar with.
This creates an environment that's conducive to developing this kind of malware, as you are dealing with known vulnerabilities managed by a user base that is predominantly clueless.
I dont disagree with you, but EVERYTHING is hackable. No such thing as 100% secure, every single institution is hacked sooner or later, including the highest levels of government with the most robust protection systems in the world.
I found your link VERY interesting and in it, it makes very clear, the hack was from Photobucket, if I understand it correctly, the hacks used Photobucket to load the malware into, Once again, it is the USER who downloaded the malware into their system.
Just like almost any hack, someone has to download it into your system.
This was using Photobucket downloads to load it into your router.
Anyway, I do agree with you, but I wont blame router companies etc, anything to do with the Internet and protection from attacks is like a huge umbrella as far as security, trying to stop every single raindrop from getting through but there is always one and there is ALWAYS someone who folds up the umbrella, makes a dash for it out of the rain hoping not to get wet.
)