Hackers of all kinds are attacking routers across the world

Sead Fadilpašić

May 2, 2024 at 6:38 AM·2 min read

Cables going into the back of a broadband router on white background.

When hackers find a vulnerable router, they compromise it by installing malware that grants persistence, the ability to run distributed denial of service (DDoS) attacks, hide malicious traffic, and more. But what happens when the hackers find a router that was already compromised by a rival gang?

Cybersecurity researchers from Trend Micro published a report that found that one of two things happen: either one group allows the other one to use the compromised infrastructure for a fee, or they each find a different way to break into the device and they use them simultaneously.

Trend Micro’s researchers made an example out of Ubiquity’s EdgeRouters, internet routers that were abused by a handful of hacking groups at the same time, some being state-sponsored, and others being financially-driven.

Shared co-working spaces

“Cybercriminals and Advanced Persistent Threat (APT) actors share a common interest in proxy anonymization layers and Virtual Private Network (VPN) nodes to hide traces of their presence and make detection of malicious activities more difficult,” the researchers explained. “This shared interest results in malicious internet traffic blending financial and espionage motives.”

When it comes to Ubiquity, Trend Micro researchers said they observed the endpoints being used by the APT28 threat actor for “persistent espionage campaigns.” APT28 is a Russian state-sponsored group, also known as Fancy Bear, or Pawn Storm. At the same time, they also saw a financially motivated group called the Canadian Pharmacy gang, using the same infrastructure to mount pharma-related phishing campaigns. Finally, they observed the Ngioweb malware being loaded directly into the memory of these devices - malware that was attributed to the Ramnit group.

EdgeRouters were a popular target mostly because the victims kept them either poorly defended, or entirely undefended. However, they don’t stand out much from other routers, which are all an equally popular asset for hackers. This is because generally they have reduced security monitoring, less stringent password policies, are rarely updated, and run on powerful operating systems that can be used for a wide number of things, Trend Micro concluded.

More from TechRadar Pro

This odd malware is targeting Docker hosts - in order to boost web traffic
Here's a list of the best firewalls around today
These are the best endpoint security tools right now

TechCrunch
Slack under attack over sneaky AI training policy
It all kicked off last night, when a note on Hacker News raised the issue of how Slack trains its AI services, by way of a straight link to its privacy principles -- no additional comment was needed.
Yahoo Personal Finance
What is a student credit card and how do you pick one?
Learn how to choose a student card by evaluating the available rates, terms, rewards, and bonus offers.
Yahoo Life
Kelly Clarkson is the latest celebrity to admit to using weight loss drugs. Do stars have a responsibility to share?
Are celebrities obligated to tell the world that they're using medication to aid in weight loss? Here's what experts say.
Yahoo Life Shopping
The 27 best Walmart deals to shop this weekend — save up to 75% on early Memorial Day sales, summer essentials and more
Ready for your pre-summer perusal: A massive patio umbrella for over half off, a 65-inch Hisense smart TV for under $500 and a Keurig hot/iced coffeemaker for nearly $70 off.
TechCrunch
Meta's latest experiment borrows from BeReal's and Snapchat's core ideas
Meta is once again taking on its competitors by developing a feature that borrows concepts from others -- in this case, BeReal and Snapchat. The company is developing a feature for Instagram called “Peek” that would allow users to post authentic pictures that can only be viewed once. While Snapchat popularized the idea of ephemeral content on social media, BeReal led the trend of posting authentic, unedited content.
Yahoo Music
K-pop group NewJeans is at the center of messy feud: What to know
Breaking down the ongoing K-pop drama between ADOR CEO Min and Hybe.
Yahoo News
New Yahoo News/YouGov poll shows why Biden-Trump rematch is still neck and neck
Right now, neither candidate is strong enough to capitalize on his opponent's flaws.
Yahoo Finance
Apple’s iPad Pro is its most incredible product, but software holds it back
Apple's iPad Pro is an amazing piece of technology, but it needs the software to keep up.
Yahoo Sports
Don’t forget the tragedy at the heart of this year’s PGA Championship
Over and above all the concern about Scottie Scheffler’s arrest, there’s this: someone died at a golf tournament Friday.
Yahoo Life Shopping
I'm an interior designer, and these are my top picks from Amazon's outdoor rug Memorial Day sale — save up to 80%
Treat your toes to these elusive deals on Safavieh, Loloi, Amber Lewis, Nourison, NuLoom and more.
Engadget
The OpenAI team tasked with protecting humanity is no more
In the summer of 2023, OpenAI created a “Superalignment” team whose goal was to steer and control future AI systems that could be so powerful they could lead to human extinction. Less than a year later, that team is dead.
Yahoo Sports
Is the Toronto Blue Jays' window to contend officially closing?
Sitting last in the AL East with regression throughout the lineup, the Blue Jays will soon have to face the reality of being sellers at this year's trade deadline.
Autoblog
Driving 2024 Chevy Traverse, BMW X5 M Competition, Fiat 500e | Autoblog Podcast #832
This week's Autoblog Podcast covers the new Chevy Traverse, BMW X5 Competition, Fiat 500e, and EV news regarding Tesla, the Biden Administration and Toyota
Yahoo Entertainment
What does it mean to be 'coded'? Linguists break down the very online use of the word.
Why is everything suddenly "coded"? How to make sense of the word that's taking over social media.
Yahoo Sports
Scottie Scheffler timeline: Everything we know about the World No. 1 golfer's arrest, return to play at PGA Championship
Scottie Scheffler's Friday morning at the PGA Championship was a whirlwind
Yahoo Sports
The top QBs for 2024 fantasy football, according to our experts
The Yahoo Fantasy football analysts reveal their first quarterback rankings for the 2024 NFL season.
Yahoo News
Scottie Scheffler calls arrest a 'big misunderstanding' after he's charged with assault. What we know about the golfer's incident.
World No. 1 golfer Scottie Scheffler was arrested early Friday morning after he tried to drive into the entrance of Valhalla Golf Club in Louisville, Ky., where the PGA Championship is being held.
Yahoo Sports
Scottie Scheffler birdies first hole at PGA Championship after morning arrest, police altercation
The defending Masters champion has won four of the last five tournaments he's played.
Yahoo Sports
PGA Championship live updates, leaderboard: Scottie Scheffler gets to 9-under after arrest, Xander Schauffele back on top
Scottie Scheffler was making his way into Valhalla for his second round when he was detained by police.
Yahoo Sports
World No. 1 Scottie Scheffler tees off at PGA Championship after being arrested, charged with felony for incident outside Valhalla
Scottie Scheffler was arrested by police en route to Valhalla Golf Club during a traffic incident.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Hackers of all kinds are attacking routers across the world

Shared co-working spaces

More from TechRadar Pro

Recommended Stories

Slack under attack over sneaky AI training policy

What is a student credit card and how do you pick one?

Kelly Clarkson is the latest celebrity to admit to using weight loss drugs. Do stars have a responsibility to share?

The 27 best Walmart deals to shop this weekend — save up to 75% on early Memorial Day sales, summer essentials and more

Meta's latest experiment borrows from BeReal's and Snapchat's core ideas

K-pop group NewJeans is at the center of messy feud: What to know

New Yahoo News/YouGov poll shows why Biden-Trump rematch is still neck and neck

Apple’s iPad Pro is its most incredible product, but software holds it back

Don’t forget the tragedy at the heart of this year’s PGA Championship

I'm an interior designer, and these are my top picks from Amazon's outdoor rug Memorial Day sale — save up to 80%

The OpenAI team tasked with protecting humanity is no more

Is the Toronto Blue Jays' window to contend officially closing?

Driving 2024 Chevy Traverse, BMW X5 M Competition, Fiat 500e | Autoblog Podcast #832

What does it mean to be 'coded'? Linguists break down the very online use of the word.

Scottie Scheffler timeline: Everything we know about the World No. 1 golfer's arrest, return to play at PGA Championship

The top QBs for 2024 fantasy football, according to our experts

Scottie Scheffler calls arrest a 'big misunderstanding' after he's charged with assault. What we know about the golfer's incident.

Scottie Scheffler birdies first hole at PGA Championship after morning arrest, police altercation

PGA Championship live updates, leaderboard: Scottie Scheffler gets to 9-under after arrest, Xander Schauffele back on top

World No. 1 Scottie Scheffler tees off at PGA Championship after being arrested, charged with felony for incident outside Valhalla