Over 25,000 Linksys routers are leaking device data: Report

By Vignesh Giridharan | Updated May 20 2019
Over 25,000 Linksys routers are leaking device data: Report

Over 25,000 Linksys Smart Wi-Fi routers are currently leaking device details because of a security vulnerability.

Linksys doesn't seem to think it's a problem but it can let attackers see details like the device name and MAC address of connected devices.

Go from OpenAPI-to-GraphQL in 2 minutes

Create GraphQL interfaces in minutes and build mobile or client apps quicker. Leverage free, open source IBM Code Patterns.

Click here to know more

Over twenty-five thousand Smart Wi-Fi routers made by American networking hardware company Linksys are leaking details of devices connected to it, says a recent report by Bad Packets Report. The affected routers could have apparently been facing a security vulnerability since as early as 2014. If the vulnerability is exploited, an attacker could gain unauthenticated remote access to sensitive information on connected devices through the affected routers.

According to the recently published report by Troy Mursch, the affected routers—which number 25,617 in total—are currently exposing the following details to a potential attacker: MAC address of every device connected to them (full historical record), device name, and its operating system. “Other sensitive information about the router such as the WAN settings, firewall status, firmware update settings, and DDNS settings are also leaked publicly,” writes Mursch. Following are the affected Linksys Smart Wi-Fi routers:

In the security report, the author explains how to go about exploiting the vulnerability. The author also talks about the risks of such a leak. “If a device’s name includes the full name of the owner, this flaw allows attackers to determine the identity of owner and geolocate them via the Linksys Smart Wi-Fi router’s public IP address,” adds Mursch. The vulnerability makes the routers prone to targeted attacks by cybercriminals on home and business networks alike.

Mursch also goes on to say that the vulnerability in these Linksys routers lets an unauthenticated attacker know which routers are still on their default login password (like, “admin”) without even logging in. According to the report, Linksys’ response to the vulnerability report sent to the company was “Not applicable/Won’t fix”. About half of these affected routers have automatic firmware updates enabled, so if Linksys does realise the problem in the future and patches it, a part of the problem will be solved automatically without any user intervention.

Inline image courtesy: Bad Packets Report

Vignesh Giridharan

Progressively identifies more with the term ‘legacy device’ as time marches on.

Digit caters to the largest community of tech buyers, users and enthusiasts in India. The all new Digit in continues the legacy of Thinkdigit.com as one of the largest portals in India committed to technology users and buyers. Digit is also one of the most trusted names when it comes to technology reviews and buying advice and is home to the Digit Test Lab, India's most proficient center for testing and reviewing technology products.

We are about leadership-the 9.9 kind! Building a leading media company out of India.And,grooming new leaders for this promising industry.