• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   netis

Netis Router Backdoor “Patched” But Not Really
  • Posted on:October 3, 2014 at 7:09 am
  • Posted in:Bad Sites, Vulnerabilities
  • Author:
    Tim Yeh (Threat Researcher)
0

Late last month, we reported about a backdoor vulnerability that we discovered in Netcore/Netis brand routers, a backdoor that made any network attached to a router of the same brand vulnerable to online infiltration and man-in-the-middle attacks. We also reported on how our friends at the ShadowServer Foundation have been kind enough to scan for IP…

Read More
Tags: backdoorMalwarenetisnetwork securityrouter

ShadowServer Scans Confirm Scale of Netis Threat
  • Posted on:September 2, 2014 at 10:28 am
  • Posted in:Vulnerabilities
  • Author:
    Jonathan Leopando (Technical Communications)
1

Our friends at the ShadowServer Foundation are now scanning for the Netcore/Netis router backdoor which we found in August.  Their findings are in line with what we published then: that the vast majority of those affected in China, with more than a million scanned IP addresses currently affected by this threat. The devices at these IP addresses are vulnerable…

Read More
Tags: backdoornetcorenetisroutershadowservervulnerabilty

Netis Routers Leave Wide Open Backdoor
  • Posted on:August 25, 2014 at 6:41 pm
  • Posted in:Vulnerabilities
  • Author:
    Tim Yeh (Threat Researcher)
18

Routers manufactured by Netcore, a popular brand for networking equipment in China, have a wide-open backdoor that can be fairly easily exploited by attackers. These products are also sold under the Netis brand name outside of China. This backdoor allows cybercriminals to easily run arbitrary code on these routers, rendering it vulnerable as a security device. What…

Read More
Tags: backdoorChinanetcorenetisroutervulnerabilty

Security Predictions for 2019

  • Our security predictions for 2019 are based on our experts’ analysis of the progress of current and emerging technologies, user behavior, and market trends, and their impact on the threat landscape. We have categorized them according to the main areas that are likely to be affected, given the sprawling nature of the technological and sociopolitical changes under consideration.
    Read our security predictions for 2019.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

  • August Patch Tuesday: Update Fixes ‘Wormable’ Flaws in Remote Desktop Services, VBScript Gets Disabled by Default
  • Jenkins Admins: Relying on Default Settings Could Put Master at Risk of Remote Code Execution Attacks
  • New Mirai Variant Uses Multiple Exploits to Target Routers and Other Devices
  • Trickbot Watch: Arrival via Redirection URL in Spam
  • Spam Campaign Targets Colombian Entities with Custom-made ‘Proyecto RAT,’ Uses Email Service YOPmail for C&C

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.