Warning: VPNFilter malicious code attacks the router that has 'evolved', there are many extremely dangerous new features

Newly discovered experts, VPNFilter has attacked and infected more than 500,000 routers recently added the ability to remove HTTPS encryption, attack intermediaries, and even wipe information on the device itself. .

Craig Williams, Cisco's security expert, said that compared to its first discovery, VPNFilter is targeting more devices including devices from Asus, D-Link, Huawei, Ubiquiti, UPVEL and ZTE. Even new models from major manufacturers like Linksys, MikroTik, Netgear and TP-Link are also affected. As expected, the number of routers around the world at risk of infection has increased to 200,000.

It is particularly dangerous that these malicious code downgrade Https connection to Http (bypassing encryption) and potentially:

1. Perform intermediate attacks, passing malicious content through infected routers to its targets.
2. Stealing login information is being transmitted between computer and website.
3. Copy usernames, passwords and send to servers controlled by hackers.

Craig Williams said that hackers have successfully "evolved" VPNFilter to enable them to manipulate things through compromised devices. Currently, hackers are and have been searching for specific targets to perform attacks.

In addition, experts warned that the malicious code could download a self-destruct module to wipe information and restart the device.

See more:

1. Warning: new code of virtual money digging is available via Facebook Messenger
2. Microsoft Office 365 version is supported against blackmail
3. Warning: GandCrab extortionist code is attacking Vietnam