mikiem2
Moderator
ncsc.gov[.]uk/news/apt28-exploit-routers-to-enable-dns-hijacking-operations
From the UK's National Cyber Security Centre, the report details how "Russian cyber actor APT28" is attempting to take over a selection of routers with known vulnerabilities, listing those models it has confirmed are being compromised. Unfortunately it does not go into whether patches are available to fix those vulnerabilities -- all you can do is make sure the latest updates are installed.
mikiem2
Moderator
tp-link[.]com/us/support/faq/5058/
Came across a "Security Advisory for CVE-2023-50224" on Tp-link's site listing primarily EOL routers vulnerable to CVE-2023-50224. I do not know if that vulnerability is the same as the one the UK's advisory warns about -- their report did not give a CVE reference. [CVE = Common Vulnerabilities and Exposures -- cve[.]org/ -- a commonly referenced & used database] Tp-link's advisory includes a link to their EOL listings [Note: the router's version number can be important]:
tp-link[.]com/us/support/faq/3562/
You must log in to post.