Community discussions

 
MikroTikFan
Member Candidate
Member Candidate
Topic Author
Posts: 196
Joined: Sat Aug 02, 2014 1:13 am

Slingshot Malware on Mikrotik Routers

Tue Mar 13, 2018 6:45 pm

Hi,

Few days ago Kaspersky Lab have discovered that on Mikrotik routers somebody has included in Winbox malicious components.

The code spies on PCs through a multi-layer attack that targets MikroTik routers.
It first replaces a library file with a malicious version that downloads other malicious components, and then launches a clever two-pronged attack on the computers themselves. One, Canhadr, runs low-level kernel code that effectively gives the intruder free rein, including deep access to storage and memory; the other, GollumApp, focuses on the user level and includes code to coordinate efforts, manage the file system and keep the malware alive.

https://www.engadget.com/2018/03/11/sop ... h-routers/

https://www.dobreprogramy.pl/Popularne- ... 86736.html


Please let me know oficially how to check this on my Mikrotik routers and hardware.
 
Sob
Forum Guru
Forum Guru
Posts: 4784
Joined: Mon Apr 20, 2009 9:11 pm

Re: Slingshot Malware on Mikrotik Routers

Tue Mar 13, 2018 6:52 pm

People who quote full posts should be spanked with ethernet cable. Some exceptions for multi-topic threads may apply.
 
jarda
Forum Guru
Forum Guru
Posts: 7604
Joined: Mon Oct 22, 2012 4:46 pm

Re: Slingshot Malware on Mikrotik Routers

Tue Mar 13, 2018 10:58 pm

Who is online

Users browsing this forum: Google [Bot] and 59 guests