The best way to avoid DNS rebinding attacks might be to change your router's DNS settings to the free OpenDNS Home (opens in new tab) service, which will let you filter out those IP addresses reserved for local networks so that no DNS requests go to them. The website could then use JavaScript or other code on the website to attack that device - in this case, a Netgear router. If you were to land on the attacker's website, the attacker could quickly manipulate DNS settings so that a request for a particular website was changed to point to a device inside your home network. In a DNS rebinding attack, the attacker would have to control both a malicious website and a DNS server, one of the so-called "phone books" of the internet. There's also a risk that malicious actors could use DNS rebinding attacks to exploit this flaw, even on Netgear routers whose administrative settings are locked down, Lawrence Abrams at Bleeping Computer (opens in new tab) pointed out. Because IP addresses can randomly (albeit infrequently) change on the local network, you could end up being locked out of administrative access, and would have to factory-reset the router manually to regain that access. The danger with that last solution is that the designated administrative machine must be specified by its IP address. To prevent that, try to specify that only one machine on the local network can access the administrative interface. That won't quite solve the problem, as anyone with access to your local network might still be able to exploit the flaw. You want to make sure that remote management is turned off so that no one can access your router's administrative settings from an external network, i.e. Then select the Advanced mode or tab, if there is one, and try to find something that looks like "Web Services Management" or "Remote Management." If you own one of these routers, your best bet for the moment is to go into your administrative interface (try (opens in new tab) if you're connected to your router). Some of these routers have reached end-of-life and probably won't get patches at all. It's likely we won't see patches for any of these routers until the end of June.
Unfortunately, Netgear has not yet provided firmware updates for these routers, despite being told of the flaws in January by Trend Micro's Zero Day Initiative (opens in new tab), which was acting on behalf of VNPT ISC. How to protect your router from this attack or follow our quick and easy guide on how to set up a virtual router Secure every device you own with the best router VPN.
0 kommentar(er)
