⚠️ CAUTION!!!⛔ This small post can save you from hackers.

I have tried Nmap scans on several home routers with the permission of their owner. I found out that most of the router looks modern, flashy, and up-to-date but their software could be a Potential Vulnerable point.

I have mentioned one of my scan results of my friend's home router, which shows that the router has an SSH version of 2012 (12 years older). when I searched for available CVE vulnerabilities, I found several potential vulnerabilities with can provide remote shell execution and more. It's even vulnerable to internal and external networks both (Public and Private Networks). found this several routers.

What Devices could hack through the exploited Router?

ONCE your router is hacked all of your connected devices such as your

1. Android and IOS Mobile Phones

2. MAC, Windows, and Linux Computer System

3. CCTV and other IOT

4. Remote control Microprocessors or Microcontrollers.

5. Things connected directly to the router or VIA any other device like printer etc.

What can It ACCESS?

It can easily hack and access anything because of the trust between your router and the connected device. It can do the following things.

1. MANIPULATED

2. ACCESS (Real-time Mic, Camera, Hardware Access)

3. DOWNLOAD (private files contacts, photos, and videos)

4. UPLOADED (like an exploit to get screen mirroring)

How to check router firmware version?

* you can download and install a software named "Nmap" in Windows, Mac, Linux, Android on the Termux application. then you just have to type one command in your terminal "sudo nmap -sC -sV 192.168.1.1" Replace your IP with the IP given and don't use sudo if running this command on termux android. the result of this command will be in front of you as i mention in the photo. check for SSH, DNS, and PORT 80 Service Version. in the version section cross verify all the service versions by Google what is the latest version of SSH and compare it with your result in the terminal.

* if you have a user and pass of your router web interface login and check for firmware update and version. if auto-update is available run it.

How to be SAFE and UPDATE your Router?

If you get router from your ISP so contact them and them to update to router firmware and in-case your direct ISP is a local small Internet Provider, in most of cases, they don't even know what exactly IP address is and know nothing about networking so ask their parental company name who provide bandwidth (internet) to them and complain their. If your ISP is a bigger company you can directly contact them they will update it or change the device and even there is less chance you get an old firmware device from a well-known ISP.

If you bought the router you can update by yourself or ask still ask the you ISP if they can assist.

#cyber #security #hacking #router #hack #ethical #cve #vulnerabilty #exploit #mac #windows #andoird #ios #linux #kali #nmap #ssh #isp