FBI Warns Outdated Routers are Being Hacked and Hijacked for Criminal Purposes

Cybercriminals are targeting old and outdated routers that are no longer supported by their vendors, the FBI has warned in a recent alert. These devices, which have been left vulnerable to exploitation due to lack of updates and patches, are being exploited by hackers to deploy malware and assimilate them into botnets used for attacks or rented out as proxy services to other criminals.

The agency noted that these devices, such as Linksys and Cisco models, were being targeted by "Chinese actors" interested in establishing botnets to conceal hacking into US critical infrastructures. The threat actors are using the routers to gain access to these networks and carry out malicious activities.

Devices Being Targeted

The FBI has identified a number of Linksys and Cisco models that are currently vulnerable to compromise, including:

  • Linksys routers with firmware prior to 2017
  • Cisco routers with software prior to 2016
  • Ethernet-based devices from various manufacturers

The agency has urged all users to take immediate action to protect their networks and devices. If they cannot replace the outdated equipment, they should at least disable remote administration features and reboot affected devices to minimize the chances of getting compromised.

Risks of Being Hijacked

Routers are the gateway of all internet traffic on a network, making them an attractive target for cyberattacks. The FBI warned that these devices can be used to deploy malware, assimilate into botnets, or rented out as proxy services to other criminals.

This is particularly concerning, as it highlights the importance of keeping devices and software up-to-date and secure. The use of outdated routers poses significant risks to personal data and network security, making it essential for users to take proactive steps to protect themselves.

What You Can Do

The FBI recommends that all users take the following steps:

  • Unplug and replace outdated equipment as soon as possible
  • Disable remote administration features on vulnerable devices
  • Reboot affected devices to minimize the chances of getting compromised
  • Maintain up-to-date software and firmware for all devices

By taking these steps, users can significantly reduce their risk of being targeted by cybercriminals using outdated routers.