Telecom, Vodafone and o2 routers in danger – this is how you protect yourself from hackers
Anyone who owns a router from Telekom, Vodafone or o2 could have a problem. A really critical security gap is exploited by hackers to turn affected routers into part of a botnet, through which attacks are then carried out. There is not a solution for every router.
Telecom, Vodafone and o2 routers in danger
All over the world, routers are at risk equipped with the Arcadyan operating system are. A security gap that is actively exploited by hackers is said to have existed for ten years. If you have a router that is still running with old firmware or for which an update is not yet available, you are currently exposed to a greater risk. Millions of routers, including those from Telekom, Vodafone and o2, can be adopted according to the experts (source: BleepingComputer).
Are worldwide affected almost 40 different routers, including models from Asus and Buffalo. These are of course also relevant for Germany, but the models from Telekom, Vodafone and o2 are much more widespread. The following routers are affected:
- o2 HomeBox 6441 (vulnerable if firmware version 1.01.36 is installed)
- Vodafone EasyBox 904 (vulnerable, no firmware update available yet)
- Vodafone EasyBox 903 (not vulnerable with current firmware)
- Vodafone EasyBox 802 (cannot be attacked with current firmware)
- Telekom Speedport Smart 3 (not vulnerable if the June firmware update is installed)
With the exception of the Vodafone EasyBox 904, for which there is no new firmware yet, you should make sure that the routers are up to date and thus protected against security gaps. Routers often update themselves if the function has not been switched off manually. Nevertheless, you should take a look now and possibly initiate an update manually so as not to Part of a botnet to become. The new Speedport Smart 4 from Telekom is probably not affected.
In the video we explain how you can optimize your WiFi:
Vulnerability in routers discovered in April
The vulnerability with the name CVE-2021-20090 was discovered on April 26, 2021 and with a 9.9 out of 10 on the scale classified as very dangerous. On August 3, researchers presented code that exploited the vulnerability. Router manufacturers have been informed so that they can close the gap.