Posted By: ITWiser Webmaster - Yorkshire's IT Specialists
Posted By: ITWiser Webmaster
Global Router Retailer Releases a Patch That Actually Creates a Security Risk
D-Link a leading worldwide router manufacturer has recently released a flawed patch for its fast, dual core, tri-band router, the AC 3200 (reviewed here for its extreme speed capabilities). The patch, rather than enhancing the security capabilities of this new monster router, has in fact allowed hackers access into the computer systems by allowing them to be able to bypass user authentication.
In plain English, anyone using this router with the bad patch is effectively allowing hackers to access their systems without the need to log on. It is widely acknowledged that authentication (where a user has to put in a username and password) enhances the security of any network. However this has highlighted that whether you spend a small sum or a larger sum in attempting to protect your systems, they are only as good and secure as their authentication processes.
The patch was released to attempt to plug a gap that is widely found in a lot of home user router setups and although it did stop external users being able to execute some processes that may have affected the network, it still left a wide set of vulnerabilities and potential for the systems to be externally modified.
ITWiser would suggest that you undertake an External Security Audit for your system to ensure that the very piece of equipment you think may be protecting your systems is actually doing its job. Protection doesn’t have to cost the earth and can be infinitely cheaper than curing the resulting chaos should your systems be breached.