DNS Redirect Issue
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
DNS Redirect Issue
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
DNS Redirect Issue
Posts: 1
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-03-13
2014-03-13 22:18:53
Posts: 1
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-03-13
DNS Redirect Issue
2014-03-13 22:18:53
Tags:
Region : UnitedKingdom
Model : TD-W8968
Hardware Version : V2
Firmware Version :
ISP : Entanet
Have now had 1 dozen ADSL TP Link routers hacked, with a DNS redirect. Flash player update message. DNS settings on the LAN side have been set to 50.63.128.135 & 8.8.8.8.
TP link, please release firmware to plug this hole.
This needs sorting - and acknowledging TODAY
Model : TD-W8968
Hardware Version : V2
Firmware Version :
ISP : Entanet
Have now had 1 dozen ADSL TP Link routers hacked, with a DNS redirect. Flash player update message. DNS settings on the LAN side have been set to 50.63.128.135 & 8.8.8.8.
TP link, please release firmware to plug this hole.
This needs sorting - and acknowledging TODAY
#1
Options
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Thread Manage
Announcement Manage
19 Reply
Posts: 1
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-06-09
That's the explanation and solution
2014-06-09 16:20:20
Hi all,
The reason of your problem is due to malware infection. Clean your PCs.
Here are 2 url that talks about :
http://www.welivesecurity.com/2014/04/02/win32sality-newest-component-a-routers-primary-dns-changer-named-win32rbrute/
http://kb.eset.sk/esetkb/index?page=content&id=SOLN3530
In the second url above, you can apply a solution from ACL rule. For example, limit the access to the modem from only several administrator addresses.
The reason of your problem is due to malware infection. Clean your PCs.
Here are 2 url that talks about :
http://www.welivesecurity.com/2014/04/02/win32sality-newest-component-a-routers-primary-dns-changer-named-win32rbrute/
http://kb.eset.sk/esetkb/index?page=content&id=SOLN3530
In the second url above, you can apply a solution from ACL rule. For example, limit the access to the modem from only several administrator addresses.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#12
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 5
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-05-18
new firmware available
2014-08-21 22:49:05
new firmware available for TD-W8901G v3 (my model)
http://www.tp-link.it/support/download/?model=TD-W8901G&version=V3
Improved security mechanism.
http://www.tp-link.it/support/download/?model=TD-W8901G&version=V3
Improved security mechanism.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#13
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 5
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-11-26
Same issue with WD8901GB - no update available
2014-11-26 06:16:30
I have the very same issue described in this thread here - bad DNS server entries in the DHCP offer. Unfortunately, On the download page
TD-W8901GB V3, the latest FW is from 2010.
TP-link, please provide a fix!! Otherwise all I can do is trash this router.
As I have discovered this problem just today, a question to the other posters - do you happen to know if this security problem may come with other, possibly worse side effects? For example, could my router password have leaked? Could the attacker have sniffed any unencrypted traffic through the router? Or is it "just" the faked DNS / redirect?
TP-link, please provide a fix!! Otherwise all I can do is trash this router.
As I have discovered this problem just today, a question to the other posters - do you happen to know if this security problem may come with other, possibly worse side effects? For example, could my router password have leaked? Could the attacker have sniffed any unencrypted traffic through the router? Or is it "just" the faked DNS / redirect?
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#14
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 5
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-11-26
"DNSChanger"
2014-11-26 06:21:40
Just for the record
This is the malware we are talking about here.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#15
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 5
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-11-26
TP-Link press release
2014-11-26 06:25:50
There's
this TP-LINK press release saying that the issue was fixed. Unfortunately they seem to have forgotten the WD8901GB.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#16
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 926
Helpful: 17
Solutions: 1
Stories: 0
Registered: 2012-10-29
Re:DNS Redirect Issue
2014-11-26 11:32:45
W8901G is too old to release a new firmware.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#17
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 5
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-11-26
W8901G too old?
2014-11-27 03:38:00
Well, I bought mine in January 2012. It was a hot seller on amazon.de those days if I remember correctly. That's less than 3 years life time.
I know 3 years is a lot in the IT industry, yet I had expected to run this device for a few more years. Technically, it's fully up to the job,
With this trojan and without a FW to flash, all I can do with this device is trash it. It's not even supported by OpenWRT, as far as I can see.
Ans as meow81 wrote on Aug 21, there is an update for the W8901G, just not for W8901G B. Being myself in the IT industry, I reckon that it couldn't be that hard or expensive to port the changes from TP-W8901G to TP-W8901GB.
I know 3 years is a lot in the IT industry, yet I had expected to run this device for a few more years. Technically, it's fully up to the job,
With this trojan and without a FW to flash, all I can do with this device is trash it. It's not even supported by OpenWRT, as far as I can see.
Ans as meow81 wrote on Aug 21, there is an update for the W8901G, just not for W8901G B. Being myself in the IT industry, I reckon that it couldn't be that hard or expensive to port the changes from TP-W8901G to TP-W8901GB.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#18
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 791
Helpful: 25
Solutions: 0
Stories: 0
Registered: 2012-11-02
Re:DNS Redirect Issue
2014-11-27 11:03:56
Checked on their website. either W8901G or W8901GB is discontinued. In this case, few company will still release a new firmware for such products.
http://www.tp-link.com/en/search/?categoryid=1044&keywords=8901G
http://www.tp-link.com/en/search/?categoryid=1044&keywords=8901G
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#19
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 5
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-11-26
Re:DNS Redirect Issue
2014-12-11 04:32:10
I got a new router in the mean time.
Everyone else, keep your hands away from TP-W8901GB, even if you can get it cheaply.
Everyone else, keep your hands away from TP-W8901GB, even if you can get it cheaply.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
0
We appreciate your feedback. Feel free to let us know more. Log in to submit feedback.
#20
Options
- Copy Link
- Report Inappropriate Content
Thread Manage
Announcement Manage
Posts: 1
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-03-13
2014-03-13 22:18:53
Posts: 1
Helpful: 0
Solutions: 0
Stories: 0
Registered: 2014-03-13
Information
Helpful: 0
Views: 2551
Replies: 19
Voters 0
No one has voted for it yet.
Tags
Related Articles
DNS/IP config issue
401
0
DNS issue
368
0
DNS ISSUE
634
0
How to redirect IPs
536
0
I have a redirect error
454
0
Report Inappropriate Content
Transfer Module
New message