A backdoor vulnerability that could allow hackers to spy to browsing activity has been discovered in seven models of D-Link and Panex routers.
The vulnerability has been discovered in router models DIR-100, DI-524, DI-524UP, DI-604S, DI-604UP, DI-604+ and TM-G5240 as well as the Planex BRL-04UR and BRL-04CW routers.
The flaw was discovered by a security researcher who managed to gain remote access to a D-Link DIR-100 through code analysis. It’s thought that the vulnerable code was written to enable the manufacturer to update the router software remotely with ease.
D-Link has made a statement advising that users disable remote access of their router while they work on a solution which they expect to roll out before the end of October. They are also testing other models to ensure security.