Researchers working with a cyber security firm named Context have discovered a bug in the backup configuration of devices exposing them to attacks. Not until quite recently a weakness in Virgin media’s wireless home internet routers could help hackers gain access and control of the software. This could help them monitor the flow of traffic through the network from computers, smartphones and Tabs connected.
Information from thorough research has shown that these backup configurations were well encrypted, with the encryption key used across Virgin Media devices been the same throughout locations in the United Kingdom. On paper, Context suggests that the bug meant that a hacker with a way into the administrative panel could download a configuration file. Also, it was suggested that same hacker could make additional instructions to enable access before restoring the file back to the hub.
The researchers claim that the invader could use the technique to have control over the router. They also suggest that he or she could then intercept transmitted traffic on the network. This loophole was first uncovered around October the previous year. Virgin media was said to have worked with both Netgear and Context to amend the loophole. Fortunately for the users, the company finally unveiled a full patch as one of its update of its firmware as scheduled during the month of May 2017.
A principal security expert named Andy Monaghan was quoted as saying: “the Super Hub represents the default home router offering from one of the UK’s largest ISP’s. Therefore, it is present in millions of UK homes. And this makes it a prime target for invaders.” He went on further to say that while internet service provided routers like this pass through more security tests; desperate hackers can find a loophole using cheap tools.
A senior researcher at Context, Jan Mitchell said that internet service providers will always be at the mercy of hardware suppliers. Latest media reports of attacks such as that of Mirai worm highlight the necessity of carrying out independent testing at regular intervals.
A spokesman for Virgin while giving a statement to the IBTimes UK said that users are no longer affected by loopholes. In own his words, “Virgin Media has deployed a firmware patch to our SuperHub 2 and 2AC routers that take care of the challenge.”
He added that the security of the Customers was of great importance to the firm. He claimed that experts in the company work with trusted third parties so as to ensure the customers’ security. He went on further to thank Context for their cooperation and professional conduct.
In spite of all these innovations and measures, it should, however, be noted that Virgin Media home routers remain a good target for attackers. You never know exactly when next an invader will strike; therefore, concerted efforts must be made to checkmate the activities of hackers no matter the cost.
