| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 150008 | 2021-08-08 23:08:00 | Spark smart router vulnerability | 1101 (13337) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1479155 | 2021-08-08 23:08:00 | Sparks fancy new smart routers are listed as having a serious unpatched security issue , allowing hackers to take over the router 2 absolute shockers here 1) the issue has existed considerable time , "discovered by Tenable, which published a security advisory on April 26" ""This vulnerability in Arcadyan’s firmware has existed for at least 10 years and has therefore found its way through the supply chain into at least 20 models across 17 different vendors" 2) We only find out via forum posts, no official announcement from Spark These type of routers are now being actively attacked. :groan: Im not sure if Sparks Smart Routers are actually vulnerable, but they are listed as being vulnerable . It would be nice to hear from Spark regarding this www.geekzone.co.nz www.bleepingcomputer.com |
1101 (13337) | ||
| 1479156 | 2021-08-10 04:47:00 | Spark is aware of a security vulnerability (www.tenable.com) that is present on one of the modems offered to Spark and Skinny broadband customers (Spark Smart Modem - Arcadyan VRV9517). We have been advised by Arcadyan that they do not believe the vulnerability could currently be successfully exploited on our Spark and Skinny modems, due to the specific build of our modems. Our own testing supports this. We have been monitoring and blocking attempted attacks from the IP addresses identified by Juniper and while we have seen a low level of attacks since the weekend, we’ve seen no evidence so far of successful exploits against the Spark or Skinny Smart Modems. We’ve been working with Arcadyan and have been testing a new version of the modem software with a fix for the vulnerability since last week. As soon as this version is ready, it will automatically be pushed out to the relevant Spark and Skinny Smart Modems. We will provide an update when we have a new version available. For customers that are using the Smart Modems with non-Spark connections, we will make the updated FW with the vulnerabilities fixed available soon. I’ll advise here of the official download location (which will be from a Spark server). Cheers - Neil G |
PENTIUM (426) | ||
| 1 | |||||