Overclock.net - Overclocking.net
     
 
Home Gallery Reviews Blogs Register Today's Posts Mark Forums Read Members List


Go Back   Overclock.net - Overclocking.net > Industry News > Software News
Reload this Page [NW] Hacker Writes Rootkit for Cisco's Routers

Reply
Page 2 of 2 < 1 2
 
LinkBack Thread Tools
Old 05-16-08   #11 (permalink)
Networking Nut
 
ShamrockMan's Avatar
 
intel ati

Join Date: Apr 2008
Posts: 33

Rep: 6 ShamrockMan Unknown
Unique Rep: 6
Trader Rating: 1
Default
This could be bad as routers have a fair amount of trust on any network, and are in a perfect spot to do some fun things.

Also routers firmware gets updated rarely, if ever (Not uncommon for them to go over a year w/o updates). Ciscos release cycle is every 6 months, and that is only if you have a $$² support contract with them.
__________________
System: Blacky
CPU
Q6600		 Motherboard
ASUS Maximus Formual SE		 Memory
2GB DDR2 		Graphics Card
ATi 4870 512mb
Hard Drive
2x 150GB 10K Raptors, 3x 300gb		 Sound Card
Asus Xonar D2X		 Power Supply
SilverStone SST-ST60F 600w		 Case
LanLi PC-61B
CPU cooling
Zalman 120MM copper		 GPU cooling
Stock (with AS5)		 OS
Windows Vista Ultimate		 Monitor
24" Acer 1900x1600
ShamrockMan is offline   Reply With Quote
Old 05-16-08   #12 (permalink)
Overclocker in Training
 
aod2002's Avatar
 
intel ati

Join Date: Dec 2006
Posts: 344

Rep: 23 aod2002 is acknowledged by some
Unique Rep: 22
Trader Rating: 0
Default
Oh man, this would be horrible if it was released and recoded for various scenarios. The question is, how exactly would it get on your router? Maybe they bind it into a firmware update.

edit: just read this part from article.

Quote:
The software cannot be used to break into a Cisco router -- an attacker would need to have some kind of attack code, or an administrative password on the router to install the rootkit, but once installed it can be used to silently monitor and control the device.

The rootkit runs in the router's flash memory, which contains the first commands that it uses to boot up, said EuSecWest conference organizer Dragos Ruiu.
Quote:
Still, the rootkit comes at a sensitive time for Cisco. Last week, The New York Times reported that the U.S. Federal Bureau of Investigation considers the problem of fake Cisco gear a critical U.S. infrastructure threat.

In late February the FBI culminated a two-year investigation by breaking up a counterfeit Cisco distribution network and seizing an estimated $3.5 million worth of components manufactured in China. According to an FBI presentation on Operation Cisco Raider, fake Cisco routers, switches and cards were sold to the U.S. Navy, the U.S. Marine Corps., the U.S. Air Force, the U.S. Federal Aviation Administration, and even the FBI itself.
Wow, so imagine a big coporation buying a bunch of fake cisco gear that's already been infected with this rootkit. No one would need physical access :-x.
__________________
mIMIC: The first time my mother used a computer
mIMIC: she held the mouse so that it was 90 degrees counter-clockwise.

Need Google Help?

System: First Build
CPU
E2160 @3ghz(380x8)		 Motherboard
ABIT IP35-E		 Memory
2GB Gskill DDR2 800mhz 		Graphics Card
SAPPHIRE Radeon X1300 128MB
Hard Drive
Western Digital 320GB w\16MB cache		 Sound Card
Onboard		 Power Supply
Cooler Master Extreme Power 500W		 Case
Cooler Master 330
CPU cooling
Cooler Master Hyper TX		 GPU cooling
Stock		 OS
Windows XP Pro SP2		 Monitor
17" CRT
Last edited by aod2002 : 05-16-08 at 04:42 AM.
aod2002 is offline   Reply With Quote
Old 05-16-08   #13 (permalink)
! YOU SON OF A GLITCH !
 
ENTERPRISE's Avatar
 
intel nvidia

Join Date: Oct 2004
Location: Gravenhurst,UK
Posts: 37,420

FAQs Submitted: 11
Folding Team Rank: 440
Hardware Reviews: 16
Trader Rating: 7
Default
Wow this would be bad if it got out to the general public...which lets face it, it will.
__________________
Quote:
Gordon, the whole world has been taken over by a race of malevolent aliens. All of humanity is depending on you. Here's a goddamned crowbar.
Fold For The Cause ! Fold For The People
WOOT Back in action,Folding 24/7 at work

System: CyberDruids TS ENTERPRISE Edition!Folding Goodness
CPU
E6750 G0 @ 3.66Ghz Vcore 1.43		 Motherboard
ASUS P5Q P45 Chipset		 Memory
4GB Patriot + Kingston DDR2 800Mhz @ 911Mhz 		Graphics Card
eVGA 8800GTS 320MB OC 702/1857/1806
Hard Drive
Seagate 250GB SATA 2 + 120GB BKUP		 Sound Card
Creative Audigy 4		 Power Supply
Corsair HX 520Watt Modular		 Case
CyberDruid TechStation V3
CPU cooling
DTEK FuZion WB + MCR320 RAD		 GPU cooling
SwiftTech MCW60 WB		 OS
Windows Vista Ultimate X64		 Monitor
Advent 15"
ENTERPRISE is offline I fold for Overclock.net Overclocked Account   Reply With Quote
Reply
Page 2 of 2 < 1 2

« Previous Thread | Next Thread »


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools



All times are GMT -4. The time now is 03:44 AM.

Contact Us - Overclock.net - Archive - Top

Overclock.net is a Carbon Neutral Site Creative Commons License Internet Security By ControlScan

Terms of Service / Forum Rules | Privacy Policy | Advertising | Become an Official Vendor
Copyright © 2008 Shogun Interactive Development. Most rights reserved.
Page generated in 0.11893 seconds with 9 queries