Skip to main content

Samsung Galaxy Note 20’s chipset might not be that bad after all

With the Galaxy Note 20 launch just a week away, all eyes will be on what upgrades Samsung brings to the table. While the chipset might remain unchanged, there might be a silver lining. While Samsung flagship like the Note series and the S series are powered by Snapdragon chipsets in the US and European markets, they come with Exynos chipset in Asian markets such as India. It often tends to lose out on the performance front against Qualcomm Snapdragon counterparts. However, a new leak suggests some good news in this regard. Samsung Galaxy Note 20 release date, price, news and leaks Upcoming smartphones in India: Specs, launch date, price (Image credit: Samsung/WinFuture) According to a tweet by Anthony, a Youtuber, Samsung Galaxy Note 20 will continue to be powered by the Exynos 990 chipset, but with major improvements in terms of the performance and efficiency. These optimizations should bring it closer to the Snapdragon 865 series. He even suggested that it is almost li...
13 comments

More than 20,000 Linksys routers hit by serious security exploit

Update: Linksys has released the following statement about the security exploit:

"Linksys responded to a vulnerability submission from Bad Packets on 7th May 2019 regarding a potential sensitive information disclosure flaw: CVE-2014-8244 (which was fixed in 2014). 

We quickly tested the router models flagged by Bad Packets using the latest publicly available firmware (with default settings) and have not been able to reproduce CVE-2014-8244; meaning that it is not possible for a remote attacker to retrieve sensitive information via this technique. 

JNAP commands are only accessible to users connected to the router’s local network. We believe that the examples provided by Bad Packets are routers that are either using older versions of firmware or have manually disabled their firewalls. 

Customers are highly encouraged to update their routers to the latest available firmware and check their router security settings to ensure the firewall is enabled."

It appears that over 21,000 Linksys routers have been leaking sensitive data about what devices have connected to them – including MAC addresses, device names and what operating system they use.

Perhaps most worryingly, information about whether or not the default admin passwords have been changed on the router has also been made accessible. This could allow malicious users to easily gain access to these routers.

The leak was spotted by Troy Mursch last week, and it affects a large number of Linksys router models, including the Linksys AC3200 Tri-Band Smart Wi-Fi Router, the Linksys MAX-STREAM series and the Velop range of Mesh Wi-Fi routers. 

Mursch has published the full list of affected routers, so if you own a Linksys router, make sure you check to see if your model is listed.

How bad is this?

Pretty bad. You don’t want your router making any details about the devices you use public, but the fact that this leak offers up such detailed device connection histories is very troubling.

The MAC address of each device essentially works as a unique ‘fingerprint’ for identifying it when it connects to a Wi-Fi network. Knowing the MAC address of a device such as a smartphone would allow people to track the device as it connected to different networks.

Meanwhile, leaking the device name could give attackers personal information that could help identify you – for example, if the device name contains your name.

There have been examples in the past of malicious users – such as the Shadowhammer group – using leaked MAC addresses to attack over a million Asus laptops earlier this year.

And, of course, by letting people know if the router still uses the default admin password is a huge security risk. If you haven’t changed the default admin password yet – make sure you do, no matter what make of router you use.

What should I do?

If you own a Linksys router, the first thing you should do is check the list above to see if your model is affected. Most Linksys routers have automatic updates installed, so when Linksys releases a fix, the routers should automatically apply the patch.

Still, it’s worth logging on to your router and making sure automatic updates are enabled. While you’re there, make sure you change the default admin password if you haven’t already.

Linksys actually released a patch for this problem back in 2014, so you can check to see if you have it installed, but it looks like many routers remain vulnerable.

According to Arstechnica, Linksys has said that its researchers couldn’t reproduce the exploit on routers that have that 2014 patch installed.

If you’re still concerned, then we recommend replacing the router (check out our list of the best wireless routers for guidance), or installing third-party firmware like OpenWrt.

Comments

Post a Comment

Popular posts from this blog

The best Android games of 2018

TechRadar - All the latest technology news The best Android games of 2018 There are loads of great games available for Android, but how can you pick out the gems from the dross, and amazing touchscreen experiences from botched console ports? With our lists, that’s how! We cover the best titles on Android right now, including the finest racers, puzzlers, adventure games, arcade titles and more.  We've tried these games out, and looked to see where the costs come in - there might be a free sticker added to some of these in the Google Play Store, but sometimes you'll need an in app purchase (IAP) to get the real benefit - so we'll make sure you know about that ahead of the download. Check back every week for a new game, and click through to the following pages to see the best of the best divided into the genres that best represent what people are playing right now. Android game of the week: Spitkiss ($1.99/£1.99/AU$3.69) Spitkiss is a mashup of...
9 comments
Read more

The best Sky Q 4K movies and TV to watch

The best Sky Q 4K movies and TV to watch You’ve got the 4K TV, you’ve coughed up for a Sky Q UHD-ready premium set-top box, and now you’re looking for something great to show off all those pixels with. Great news! If you’ve signed up for Sky’s 2TB Sky Q box with a Sky Q multiscreen subscription, you’re good to go, getting access to the suite of 4K films and TV shows Sky is currently curating. It’s usually a £34 a month deal (including rental of the box), but is currently down to £32 a month. There’s a growing selection of top-notch films on the service, with the library growing all the time, and Sky pumping more and more money into presenting its own original programming in 4K too. Note you’ll have to download 4K content in advance of watching it, rather than streaming it – so if you’ve got a slower broadband connection, you may want to get some of these downloading well in advance of settling down to watch them. Depending on the film and length, they can be many gigabyte...
12 comments
Read more

Samsung Galaxy Note 20’s chipset might not be that bad after all

With the Galaxy Note 20 launch just a week away, all eyes will be on what upgrades Samsung brings to the table. While the chipset might remain unchanged, there might be a silver lining. While Samsung flagship like the Note series and the S series are powered by Snapdragon chipsets in the US and European markets, they come with Exynos chipset in Asian markets such as India. It often tends to lose out on the performance front against Qualcomm Snapdragon counterparts. However, a new leak suggests some good news in this regard. Samsung Galaxy Note 20 release date, price, news and leaks Upcoming smartphones in India: Specs, launch date, price (Image credit: Samsung/WinFuture) According to a tweet by Anthony, a Youtuber, Samsung Galaxy Note 20 will continue to be powered by the Exynos 990 chipset, but with major improvements in terms of the performance and efficiency. These optimizations should bring it closer to the Snapdragon 865 series. He even suggested that it is almost li...
13 comments
Read more