Domestic routers by D-Link and Planex have been found to have an easy-to-exploit backdoor access point by security researcher, Craig Heffner.
The backdoor, if used, would allow a hacker to take complete control of a router and/or modem letting them gain access to the home’s browsing activity.
D-Link has acknowledged the existence of the backdoor and said a fix would be available by the end of October.
Heffner reverse engineered the software used to control a D-Link DIR-100 router. Analysis of the code revealed a string of letters that, if used in the right way, unlocked remote access to the gadget. It has been speculated that this may have been a tool used by D-Link to make it easier for them to update their products remotely.
So far, the backdoor does not seem to have been exploited although it is believed that thousands of users who brought these models are at risk.
D-Link have said that they are working with Mr Heffner and other security researchers to find out whether any of their other products are exposed to this security flaw. D-Link added that it would soon produce an update for the software which would close the backdoor. A fix should be available by the end of October.
See the full story on BBC.co.uk