Cybersecurity experts have found hidden backdoors to control devices in Chinese-made routers that are being sold at Amazon, Walmart, and eBay.
CyberNews Sr. Information Security Researcher Mantas Sasnauskas and researchers James Clee and Roni Carta have found hidden backdoors to control devices in Chinese-made routers that are being sold at Amazon, Walmart, and eBay.
According to the researchers, the Jetstream router sold exclusively by Walmart had a backdoor and enabled hackers to gain remote control over not only the router itself, but also any devices connected to the network.
Aside from the Jetstreams, the low-cost Wavlink routers, also made in China and sold on Amazon and eBay, have similar backdoors.
The researchers explained that potential attackers would not need physical access to the router to exploit it and all they need is for a victim to go online.
Researchers also found that the said vulnerabilities are being actively exploited, and there’s been an attempt to add the devices to a Mirai botnet which in turn could be added to remotely controlled attacks.
“I was interested in seeing how much effort companies were putting into security. I decided it would be a great hobby to buy cheap Chinese technology off of Amazon and see what I could find out,” said Clee on their discovery.
Walmart thanked the researchers and CyberNews for raising the issue and explained that they would not restock it anymore.
“Thank you for bringing this to our attention. We are looking into the issue to learn more. The item in question is currently out of stock and we do not have plans to replenish it,” said Walmart.
© Fourth Estate® — All Rights Reserved.
This material may not be published, broadcast, rewritten or redistributed.