D-Link warned users of several legacy router models about known vulnerabilities actively exploited by botnets.
These devices, which have reached End-of-Life (EOL) and End-of-Service (EOS), are at heightened risk of being targeted by malware strains known as “Ficora” and “Capsaicin.”
The affected devices include the following models:
These routers, spanning all hardware revisions and firmware versions, are no longer supported.
Their firmware development ceased well before 2024. For instance, DIR-645 reached EOS in 2018, while other international models like DIR-806, GO-RT-AC750, and DIR-845L were discontinued between 2016 and 2018.
Reports from Fortiguard detail how the malware botnets Ficora and Capsaicin exploit these unsupported routers to carry out malicious activities.
These botnets target outdated firmware, taking advantage of security gaps that no longer receive updates or patches.
Once compromised, these routers can be used for Distributed Denial-of-Service (DDoS) attacks, data theft, or launching further malware campaigns.
D-Link has emphasized that continuing to use EOL/EOS devices presents significant cybersecurity risks. Unsupported devices often lack critical firmware updates and security patches, making them highly susceptible to modern cyberattacks.
D-Link strongly advises users to retire these routers immediately and replace them with newer models that receive regular firmware updates.
For consumers in North America, D-Link suggests the following actions:
While this advisory primarily targets users in North America, D-Link urges all international users of legacy devices to consult their regional D-Link offices for tailored recommendations.
The company highlights the importance of staying ahead of technological advancements and ensuring equipment aligns with current cybersecurity standards.
D-Link’s decision to classify these models as EOL/EOS aligns with the natural lifecycle of technological products.
As these devices age, they become obsolete due to security measures and advancements in wireless technology. The company stresses the importance of upgrading to newer models to safeguard users against evolving threats.
Investigate Real-World Malicious Links, Malware & Phishing Attacks With ANY.RUN – Try for Free
Sophos Managed Detection and Response (MDR) in September 2024, the notorious Lumma Stealer malware has…
Cybercriminals have unleashed a new malware campaign using fake AI video generation platforms as a…
The North Korean state-sponsored Advanced Persistent Threat (APT) group Kimsuky, also known as “Black Banshee,”…
The North Korean state-sponsored hacking group APT37, also known as ScarCruft, launched a spear phishing…
IPFire, the powerful open-source firewall, has unveiled its latest release, IPFire 2.29 – Core Update…
Distributed Denial of Service (DDoS) attacks, once seen as crude tools for disruption wielded by…