cancel
Showing results for 
Search instead for 
Did you mean: 

Loss Of Allowance -Was My Router Hacked?

ecoalex2
Tutor

Loss Of Allowance -Was My Router Hacked?

With yesterdays hack of DYN , the resulting slowed, or blocked service did I suffer this last week when I lost all my allowance and tokens? Home devices were hacked, routers among them. I didn't set up password protocol in my router, because of my location far from neighbors. Was my router hacked in a prelude to yesterdays attack?
It's the only explanation for my loss of allowance last Friday, and yesterday's Friday attack.
28 REPLIES 28
BirdDog
Assistant Professor

Re: Loss Of Allowance -Was My Router Hacked?

Alex, about all I can say for sure is not having a password set on your router is a very bad thing.
Gwalk900
Honorary Alumnus

Re: Loss Of Allowance -Was My Router Hacked?

Always change the default username and password to the routers GUI and ALWAYs enable wireless encryption and all wifi frequencies.

This is needed to prevent "drive-by" connections by every device that comes within range.

Someone can visit and have a phone or tablet in their possession and it WILL latch on your open network.

Also disable Guest Accounts, Remote Access and WPS and all router related "cloud" services.


Also, be aware that there is a Linux kernel vulnerability:


US Department of Homeland Security US-CERT


National Cyber Awareness System:


 


Linux Kernel Vulnerability
10/21/2016 12:50 PM EDT

Original release date: October 21, 2016

US-CERT is aware of a Linux kernel vulnerability known as Dirty COW (CVE-2016-5195). Exploitation of this vulnerability may allow an attacker to take control of an affected system.

US-CERT recommends that users and administrators review the Red Hat CVE Database, the Canoical Ubuntu CVE Tracker, and CERT Vulnerability Note VU#243144 for additional details, and refer to their Linux or Unix-based OS vendors for appropriate patches.

This product is provided subject to this Notification and this Privacy & Use policy.





BirdDog
Assistant Professor

Re: Loss Of Allowance -Was My Router Hacked?

I believe no security set up on the router leaves it vulnerable  regardless wireless "drive by" or not. The router firewall can easily be penetrated  by hackers if security is not set up.
ecoalex2
Tutor

Re: Loss Of Allowance -Was My Router Hacked?

As I mentioned, I am far from the road, or neighbors, much farther than the 300 feet limit for this router. I don't think wifi theft/hacking is a problem, however web connected vulnerability is.
The hack was thru the web.
My question was whether I lost my allowance due to web hacking?
BirdDog
Assistant Professor

Re: Loss Of Allowance -Was My Router Hacked?

Still, there are settings on many routers that can make a difference . I have DMZ setting which opens the door. What router do you have? If running a non-secure OS like XP then you are open to anything.

GabeU
Distinguished Professor IV

Re: Loss Of Allowance -Was My Router Hacked?

ecoalex,

Do you have a satellite TV receiver connected to your router, or any other device that controls anything in your home?  It seems that a lot of different devices were used in the DDOS attack on DYN. 


Ryzen 5 3400G | MSI B450M Pro-M2 MAX | 16GB Corsair Vengeance DDR4 3000 | XPG SX8200 Pro 512GB NVMe | Windows 10 Pro
ecoalex2
Tutor

Re: Loss Of Allowance -Was My Router Hacked?

I do have dish tv and run Linux Mint 17 OS. The router is a Linksys 0168.
GabeU
Distinguished Professor IV

Re: Loss Of Allowance -Was My Router Hacked?

It's entirely possible that, if its connected to your router, your Dish TV receiver was used as a part of the DYN DDOS attack.  Again, possible, but that doesn't mean it was for sure.  They were one of the things that was used quite a bit in the attack.  Unfortunately, without having some type of firmware that allows you to view what data each device uses, you may never know if it was, in fact, used. 

They did it through the net, so the fact that your router isn't within range of anybody being able to hack into it wouldn't matter. 

I would take the advice and at least change your router GUI password, even if you can't change the sign in name (some of them are locked in with the name "admin" and can't be changed).  I don't know if that would stop the type of attack that happened, or even if your device was involved, but it's still a good idea to have the router GUI password protected, anyway. 


Ryzen 5 3400G | MSI B450M Pro-M2 MAX | 16GB Corsair Vengeance DDR4 3000 | XPG SX8200 Pro 512GB NVMe | Windows 10 Pro
maratsade
Distinguished Professor IV

Re: Loss Of Allowance -Was My Router Hacked?

"ALWAYS enable wireless encryption and all wifi frequencies.[...] Also disable Guest Accounts, Remote Access and WPS and all router related "cloud" services."

GWalk, do you have instructions or a link to instructions on how to do all this? Thanks!