I had heard that GZ had mentioned the new Chuck Norris worm / attack was being discussed in the forum, but I can't seem to see any mention of it..
As I have previously warned, if you have a Dlink modem, now might be an even better time to upgrade the firmware, as there is a new Worm doing the rounds.
The Chuck Norris worm attacks a few different devices, including (among others) the vulnerable Dlink routers
• My first recommendation is to log into your router, and change the default password. • But mainly check that you have installed the most recent version of firmware.
This does not JUST impact the following routers, but these are known to be vulnerable..
The following routers are reportedly affected: * DSL-502T * DSL-504T * DSL-562T * DSL-G604T
The security issue has been reported in the following firmware versions: * V1.00B01T16.EN.20040211 * V1.00B01T16.EU.20040217 * V0.00B01T04.UK.20040220 * V1.00B01T16.EN.20040226 * V1.00B02T02.EU.20040610 * V1.00B02T02.UK.20040618 * V1.00B02T02.EU.20040729 * V1.00B02T02.DE.20040813 * V1.00B02T02.RU.20041014
I will also keep updating details as I discover them here www.adslgeek.com/dslforum
Basically some people don't change the default passwords and the remote administration access options, so this trojan simply login to the router and installs itself using a known vulnerability. Once installed the trojan redirects requests to sites with automatic malware downloads.
Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly
to your computer or smartphone by using a feed reader.
Administrator
ID Verified
Trusted
Geekzone
