Over 25,000 Linksys Smart Wi-Fi Routers Believed Vulnerable to Remote Exploit (May 14, 2019)
As part of Microsoft’s most recent Patch Tuesday, fixes are included for versions of Windows 7 and Windows 2008, and have also been made available for versions of Windows XP and Windows 2003. The flaw is considered ‘wormable’, meaning that it has the potential to be used in malware that spreads by itself across and between networks. Since Windows XP and 2003 entered the end-of-life period five years ago, Microsoft stated that, “Given the potential impact to customers and their businesses, we made the decision to make security updates available for platforms that are no longer in mainstream support … We recommend that customers running one of these operating systems download and install the update as soon as possible.”
Recommendation: A patch is available for this vulnerability and should be applied, if it has not been already, as soon as possible to avoid potential malicious activity. This story depicts the importance of policies regarding the application of security patches to network devices when they become available.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.