• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   netis

Netis Router Backdoor “Patched” But Not Really
  • Posted on:October 3, 2014 at 7:09 am
  • Posted in:Bad Sites, Vulnerabilities
  • Author:
    Tim Yeh (Threat Researcher)
0

Late last month, we reported about a backdoor vulnerability that we discovered in Netcore/Netis brand routers, a backdoor that made any network attached to a router of the same brand vulnerable to online infiltration and man-in-the-middle attacks. We also reported on how our friends at the ShadowServer Foundation have been kind enough to scan for IP…

Read More
Tags: backdoorMalwarenetisnetwork securityrouter

ShadowServer Scans Confirm Scale of Netis Threat
  • Posted on:September 2, 2014 at 10:28 am
  • Posted in:Vulnerabilities
  • Author:
    Jonathan Leopando (Technical Communications)
1

Our friends at the ShadowServer Foundation are now scanning for the Netcore/Netis router backdoor which we found in August.  Their findings are in line with what we published then: that the vast majority of those affected in China, with more than a million scanned IP addresses currently affected by this threat. The devices at these IP addresses are vulnerable…

Read More
Tags: backdoornetcorenetisroutershadowservervulnerabilty

Netis Routers Leave Wide Open Backdoor
  • Posted on:August 25, 2014 at 6:41 pm
  • Posted in:Vulnerabilities
  • Author:
    Tim Yeh (Threat Researcher)
18

Routers manufactured by Netcore, a popular brand for networking equipment in China, have a wide-open backdoor that can be fairly easily exploited by attackers. These products are also sold under the Netis brand name outside of China. This backdoor allows cybercriminals to easily run arbitrary code on these routers, rendering it vulnerable as a security device. What…

Read More
Tags: backdoorChinanetcorenetisroutervulnerabilty

Security Predictions for 2018

  • Attackers are banking on network vulnerabilities and inherent weaknesses to facilitate massive malware attacks, IoT hacks, and operational disruptions. The ever-shifting threats and increasingly expanding attack surface will challenge users and enterprises to catch up with their security.
    Read our security predictions for 2018.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

  • Perl-Based Shellbot Looks to Target Organizations via C&C
  • Fake Banking App Found on Google Play Used in SMiShing Scheme
  • Exploring Emotet: Examining Emotet’s Activities, Infrastructure
  • Hide and Script: Inserted Malicious URLs within Office Documents’ Embedded Videos
  • Lazarus Continues Heists, Mounts Attacks on Financial Organizations in Latin America

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.