Usually Android trojans target and take over your phone, but a new variant goes after your entire wireless network. In today’s video, I talk about a new Android trojan discovered by Kaspersky labs called Switcher. After infecting your phone, this mobile trojan tries to brute force administrative access to your wireless router in order to change you DNS servers. Watch the video for more details, as well as tips to avoid this new threat.
Episode Runtime: 3:09
Direct YouTube Link: https://www.youtube.com/watch?v=iduOPa2Oago
EPISODE REFERENCES:
- Researcher’s post on Android Switcher Trojan – Kaspersky
— Corey Nachreiner, CISSP (@SecAdept)
Changing the default password is always a good idea – not only for this thread. The other important setting on your router is to allow configuration changes only from LAN (and not from WAN or wireless) – especially if you normally don’t use LAN connections in your network. In this scenario the rare times you need to change your router’s configuration just plug in a ad-hoc LAN cable and connect from your computer.
I agree… avoid WAN configuration of any of your routers, or even IoT devices. If you must access remote management interfaces from outside your LAN, at least use some additional authentication and encryption (like some VPN), so you don’t offer the access to everyone in the world.