German Telecom Service Deutsche Telekom confirmed that the connectivity problems that 900.000 had from its customers on Sunday were the result of a hack attempt.
“Following the latest findings, it appears that some of Deutsche Telekom's customer routers were affected by an external attack. Our network was not affected in any way. The attack attempted to infect routers with malware, and although it failed it caused problems and limitations on 4 to 5 percent of our customers' routers. This led to limited use of Deutsche Telekom's services by the affected customers," she said company.
“As we know, there is an attack on routers maintenance UI around the world right now. This was also confirmed by the Federal Office for Information Security. "
In order to mitigate the attack, Deutsche Telekom has implemented a series of measures on their network. At the same time, it released an updated version of the firmware for the targeted routers: Speedport W 921V and Speedport W 723V Type B. This update will prevent this malware from violating the routers accidentally or deliberately, creating a denial-of-service situation.
“Currently, an updated version of the software is being provided to all our concerned customers who wish to fix it problem του router. Η εγκατάσταση του λογισμικού έχει ήδη ξεκινήσει και μπορούμε να δούμε την επιτυχία του εν λόγω μέτρου,” πρόσθεσε η εταιρεία σημείωσε, και ζήτησε από τους πελάτες της που επηρεάστηκαν από την επίθεση να αποσυνδέσουν router τους για 30 δευτερόλεπτα, καθώς μετά την επανεκκίνηση το κακόβουλο λογισμικό αφαιρείται από τη device.
Meantime researchers of Kaspersky Lab report that this particular attack on Deutsche Telekom customer routers comes from a variant of the Mirai malware.