ioc[.]one - OSINT Cyber Threat Intelligence Database

Securing Your Home Routers: Understanding Attacks and Defense Strategies

Show in Graph

Common Information

Type	Value
UUID	eae42e3c-782b-46a7-94fe-d1e05203117d
Fingerprint	f96cab87e342ad1ad4c29240cca15011fdc48f699d52514c436dce0add8f8659
Analysis status	DONE
Considered CTI value	2
Text language
Published	Jan. 25, 2017, 2:16 p.m.
Added to db	April 14, 2024, noon
Last updated	Aug. 30, 2024, 11:03 p.m.
Headline	Securing Your Home Routers: Understanding Attacks and Defense Strategies
Title	Securing Your Home Routers: Understanding Attacks and Defense Strategies
Detected Hints/Tags/Attributes	170/3/84

Source URLs

	Redirection	Url
Details	Source	https://documents.trendmicro.com/assets/wp/wp-securing-your-home-routers.pdf

URL Provider

Details	Provider	Source level domain
Details	trendmicro.com	documents.trendmicro.com

Attributes

Details	Type	#Events	Value
Details	CVE	6	cve-2015-0554
Details	CVE	1	cve-2015-0558
Details	CVE	1	cve-2016-5681
Details	Domain	18	bank.com
Details	Domain	138	www.securityweek.com
Details	Domain	177	blog.trendmicro.com
Details	Domain	89	arstechnica.com
Details	Domain	2	www.devttys0.com
Details	Domain	1	w00tsec.blogspot.com.br
Details	Domain	9	pierrekim.github.io
Details	Domain	2	devicereversing.wordpress.com
Details	Domain	2	www.techtimes.com
Details	Domain	29	www.cvedetails.com
Details	Domain	175	www.zdnet.com
Details	Domain	78	securityaffairs.co
Details	Domain	177	www.wired.com
Details	Domain	1	seclist.us
Details	Domain	3	en.avm.de
Details	Domain	1	www.turris.cz
Details	Domain	6	whois.net
Details	Domain	1	sitesafety.trendmicro.com
Details	Domain	5	dnsleaktest.com
Details	Domain	1	myresolver.net
Details	Domain	9	www.asus.com
Details	Domain	2	netfilter.org
Details	Domain	1	www.netfilter.org
Details	Domain	4	pentest-tools.com
Details	Domain	1	tools.com
Details	Domain	258	nmap.org
Details	Domain	11	cirt.net
Details	Domain	7	www.openvas.org
Details	Domain	1	shop.trendmicro.com.au
Details	Domain	604	www.trendmicro.com
Details	File	1	arris-cable-modem-has-backdoor-in.html
Details	File	5	products.html
Details	File	1	thousands-of-netgear-routers-compromised-by-hackers-exploiting-unpatched-security-hole-is-your-router-affected.htm
Details	File	1	vlany-is-a-ld_preload-rootkit-for-x86_64-i686-and-arm-architectures.html
Details	File	82	default.aspx
Details	File	17	about.html
Details	IPv4	142	192.168.0.1
Details	IPv4	97	10.0.0.1
Details	IPv4	5	100.100.100.100
Details	IPv4	18	10.1.1.1
Details	IPv4	262	192.168.1.1
Details	IPv4	1	172.16.31.100
Details	Url	1	http://admin:admin@192.168.0.1
Details	Url	1	http://admin:1234@192.168.0.1
Details	Url	1	http://admin:@192.168.0.1
Details	Url	1	http://admin:admin@10.0.0.1
Details	Url	1	http://www.securityweek.com/new-mirai-variants-have-built-domain-generation-algorithm.
Details	Url	1	http://searchsecurity.techtarget.com/news/450403881/modified-mirai-botnet-could-infect-five-million-routers.
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/netis-routers-leave-wide-open-backdoor/.
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/netis-router-backdoor-patched-but-
Details	Url	1	http://arstechnica.com/security/2015/09/malicious-cisco-router-backdoor-found-on-
Details	Url	1	http://www.devttys0.com/2013/10/reverse-engineering-a-d-link-backdoor/.
Details	Url	1	https://w00tsec.blogspot.com.br/2015/11/arris-cable-modem-has-backdoor-in.html
Details	Url	1	https://pierrekim.github.io/blog/2015-07-16-backdoor-and-rce-found-in-8-totolink-
Details	Url	1	https://devicereversing.wordpress.com/2016/11/07/eirs-d1000-modem-is-wide-open-to-being-hacked/.
Details	Url	1	http://www.techtimes.com/articles/94124/20151013
Details	Url	1	https://www.cvedetails.com/cve/cve-
Details	Url	1	http://www.zdnet.com/article/millions-of-routers-vulnerable-to-unpatched-reboot-flaw/.
Details	Url	1	http://securityaffairs.co/wordpress/32365/hacking/adb-pirelli-home-routers-flaws.
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/mobile-
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/targeted-attack-in-
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/botnet-rises-in-the-name-of-chuck-
Details	Url	2	http://blog.trendmicro.com/trendlabs-security-intelligence/summary-of-
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/bash-bug-vulnerability-used-in-
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/shellshock-continues-
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/bashlite-affects-
Details	Url	1	https://www.wired.com/2016/12/botnet-broke-internet-isnt-going-away/.
Details	Url	1	http://blog.trendmicro.com/trendlabs-security-intelligence/pokemon-
Details	Url	1	http://seclist.us/vlany-is-a-ld_preload-rootkit-for-x86_64-i686-and-arm-architectures.html
Details	Url	1	https://en.avm.de/news/short-notes/2014/telephone-scammers-
Details	Url	1	https://www.turris.cz/en
Details	Url	1	https://whois.net/default.aspx
Details	Url	1	http://sitesafety.trendmicro.com/.
Details	Url	1	https://www.dnsleaktest
Details	Url	1	http://myresolver.net/.
Details	Url	1	https://www.asus.com/support/faq/1005484.
Details	Url	1	https://www.netfilter.org/.
Details	Url	1	https://nmap.org/zenmap/.
Details	Url	1	https://cirt.net/nikto2.
Details	Url	1	http://www.openvas.org/about.html
Details	Url	1	http://shop.trendmicro.com.au