CREATIVE PROGRAMS AND SYSTEMS

PROFESSIONAL PEOPLE. PROFESSIONAL RESULTS.

810-224-5252
Managed IT Services Including: Custom Built and Maintained Servers and PC’s, Disaster Recovery Support, Security Audits, and Networking.
Computer Support Company Services Include: Troubleshooting, Repair and Malware Removal
Custom Web Designs with Custom Graphics, Coding, and Web Hosting Services
Custom Software Solutions that Include CRM Software, Database Programming, Inventory Systems, and Custom Ticket Programs
Custom App Programing and Development for iPhone and Android Applications
Online Marketing Services (SEO) that Include Search Engine Placement, Keyword Research, Adwords Management, and Website Content Writing

CPS NEWS STAND PROFESSIONAL NEWS. PROFESSIONAL ADVISE.

FBI says 'reboot your router'

2018-06-05 17:31:36


The FBI has issued a threat alert regarding over 500,000 infected home and small business routers, and offers a simple way to begin fixing the problem: reboot your network router.

The U.S. Federal Bureau of Investigation, on May 25, 2018, by way of the Internet Crime Complaint Center (www.ic3.gov), issued Alert Number I-052518-PSA, titled, “ Foreign Cyber Actors Target Home and Office Routers and Networked Devices Worldwide.”

First off, let me say I don’t know why Internet security professionals continue to refer to the Internet bad guys as “actors.” You see it everywhere in security trade articles, press releases and publications; bad guy hacker-types are constantly referred to as “threat actors,” “malicious actors,” “state-sponsored actors,” “hostile actors,” and, in this case, “foreign cyber actors.”


Tech people have long been accused of speaking in a language no one else can understand, and calling Internet crooks “actors” only perpetuates the problem. Actors are people who star in TV shows and movies. Internet criminals are criminals, not “actors.”

In this case, the “foreign cyber actors” (Russians, according to the Feds) are indeed acting very badly, in that they have discovered weaknesses in certain home and small business-type network routers that allow them to infect the routers with malware that can steal website logins and passwords. Next, they can send the router a “self-destruct” order that turns it into a pile of useless junk. According to the FBI, over a half million routers have already been infected.

The “Defense” section of the official alert reads as follows: “The FBI recommends any owner of small office and home office routers reboot the devices to temporarily disrupt the malware and aid the potential identification of infected devices. Owners are advised to consider disabling remote management settings on devices and secure with strong passwords and encryption when enabled. Network devices should be upgraded to the latest available versions of firmware.”

Devices currently known to be infected include those from Netgear, MicroTik, Linksys, TP-Link and QNAP network storage devices. Even so, the FBI recommends all home and small business routers be rebooted, regardless of what brand they may be. This will help identify infected routers and possible remedies.

Rebooting the router only gets part of the job done, though. The router’s internal settings should be checked, too. Remote management capabilities (turned on by default in many routers) should be disabled. The routers should be protected by strong passwords, and not by the factory-provided passwords found on stickers attached to the device. Top-level encryption should also be used.

The router’s special control software, known as “firmware,” should be updated to the latest version, too, as firmware flaws led to the problem, in the first place. If no firmware update is available, the router should be reset back to the factory default configuration and secured for continued use.

With all this in mind, the United States Computer Emergency Readiness Team (US-CERT) has updated its network guide titled, “Security Tip (ST15-002) Home Network Security.” The guide is a thorough look at how to properly setup and secure a home computer network. I strongly recommend you read the guide, and follow its directions, especially if you are one of those “do it yourself” types who thinks you know everything you need to know about installing a network router; I assure you, you do not.

The US-CERT guide addresses some do-it-yourself misconceptions right up front, when it states, “Many home users share two common misconceptions about the security of their networks. They believe that their home network is too small to be at risk of a cyberattack (and) they believe that their devices are “secure enough” right out of the box.”

I was confronted by this mentality recently in the form of a very successful small business owner who, deciding to be his own I.T. department, ended up calling me in to fix things the right way. “Why would anyone want to get into my network,” he whined, “when we’re just a small company?”

“Small businesses are are Target Number One to the Internet bad guys, mainly because many small business owners don’t take Internet security seriously enough, which makes their networks easy to hack,” I replied. “Besides capturing bank account passwords as you type them in, one other thing the bad guys are looking for is accounting programs like QuickBooks or Sage Peachtree, which you have.”

“But, my accounting software is password protected,” he protested. “Dude,” I said, “if someone is smart enough to hack into your network, they are probably smart enough to hack around your crummy Quickbooks password, too.” End of discussion.

Original Source: http://www.normantranscript.com/opinion/columns/fbi-says-reboot-your-router/article_4100a982-15bd-5f09-b710-2288324bd2ab.html

Original Author: Dave Moore

Written Date: June 3 2018

OTHER ARTICLES:

More...
News Stand

TESTIMONIALS

You are phenomenal! I really love your mock up! And I am usually so very critical... I see that my faith in you was well placed! You got all the information and categories on the landing page while maintaining serenity and classy professionalism. You really listened! Bravo!

Lake and Land Real Estate

CPS is a company that not only has the know-how to solve your computer and IT related challenges, but they are a company with integrity. My experience is that CPS provides the best solutions without trying to sell customers things they don't need. In addition, they are timely, efficient, and fun to deal with. I highly recommend CPS!

Rev. Don Weatherup
Pastor, Arise Church

Thank you for guiding us with our tablet programming. The staff is thrilled at how quickly they can perform their tasks now and how wonderfully responsive your team has been.

Scott Kiefer
Matrix Quality Services, Inc.

We've had a relationship with CPS since the onset of NurseTabs and the personnel has not only developed our apps, updates for them, and the NurseTabs website but has done so in a way that has helped NurseTabs grow our business. CPS has taken our creations and input and provided an end product that is exactly what we have asked for. It is apparent that their interest is customer driven, and has met our deadlines on every project.

Shawn Austin
AusQuinn LLC and NurseTabs

Special thanks to CPS in Brighton for all the work they have done on the network and website for us. CPS is fantastic to work with and if you find yourself in need of IT professionals I recommend you reach out.

Flat Land Games