What's new
By:

Draytek Security Notice

Embattle said:
As a user of a Vigor 130 I got the following notice which can affect a lot of Draytek products - https://www.draytek.com/en/about/ne...of-urgent-security-updates-to-draytek-routers
Click to expand...


Already posted :

https://www.snbforums.com/threads/security-advisory-csrf-dns-attacks-draytek.46668/

They have rushed out new firmware which apparently only adds a captcha to the log in , bet that won't help much. Also people running 2960's are seeing the same attack but DrayTek deny that model is affected.

The DrayTek log in is a joke, you can't change the username from default "admin".

DrayTek also still use telnet .........
 
If you hit a bad DNS server they can load anything they want on your PC. I would recommend creating an access list to block all other DNS than your local ISP's DNS. This way if your DNS changes then the PCs go off line because they are using a blocked DNS server.
 
You must log in or register to reply here.

Similar threads

P
using end of life wi-fi access points behind router
Replies
2
Views
424
pacoinconn1
P
E
Why Am I Not Seeing Info On Asus Router Vulnerabilities Here?
Replies
19
Views
2K
zdaw700
Z
R
Is Draytek suitable for novices?
Replies
3
Views
1K
Tech Junky
T
MattBoothDev
Curious packet loss when connecting my modem to a switch
Replies
11
Views
2K
Crimliar
Crimliar
C
AiDetection alerts (Asus RT-BE86U)
Replies
3
Views
446
Tech9
Tech9

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 1,923 (members: 14, guests: 1,909)
Back
Top