Particle.news

Download on the App Store

FBI Urges Immediate Action on Vulnerable End-of-Life Routers Targeted by TheMoon Malware

Thirteen outdated router models from Cisco, Ericsson, and Linksys are being exploited in a botnet campaign that enables anonymous cybercrime.

Stock Image: Home office wireless router for broadband online internet connection.
Image

Overview

  • The FBI has issued an urgent warning regarding 13 specific end-of-life router models vulnerable to TheMoon malware attacks.
  • The malware infects routers without requiring a password, exploiting open ports and vulnerable scripts to establish control.
  • Compromised routers are turned into proxy servers, allowing cybercriminals to conduct illegal activities anonymously.
  • The FBI advises replacing outdated routers, disabling remote management, applying firmware updates, and using strong, unique passwords.
  • Routers manufactured in 2010 or earlier are particularly at risk due to the lack of ongoing security updates from manufacturers.