Wi-Fi Routers in Hungary Vulnerable to Hacking, Users to Blame for Not Updating
A crucial update has been available for over a year to address a vulnerability in TP-Link wi-fi routers, yet many users have still not updated their devices.
This oversight has led to significant security risks.
At least six different botnet malwares are exploiting a security flaw in the TP-Link Archer AX21 (AX1800) wi-fi routers, reports _Bleeping Computer_.
The issue originates from a serious vulnerability (CVE-2023-1389) in the routers' web-based management system identified by several security researchers in January 2023. TP-Link released a patch in March, but devices that have not been updated since remain at risk.
Attackers are taking advantage of this vulnerability, with variants of the Mirai and Condi botnets appearing on unpatched routers.
Recently, the cybersecurity firm Fortinet issued a warning after observing a spike in botnet activities exploiting the routers' vulnerabilities to conduct harmful operations.
According to telemetry data, the number of malicious activities in March peaked at 40 to 50 thousand on some days.
While the botnets use slightly different approaches, they share the common goal of gaining control over the vulnerable routers and co-opting them into malicious activities, such as DDoS attacks.
Despite the security update being available for a year, Fortinet's report indicates that many users continue to operate their routers with the outdated firmware. Users in Hungary can find the necessary guidance to update their wi-fi router software on the following website.