06 Sep AT&T U-verse Customers With Arris Routers May Be At Hacking Risk
Thousands of AT&T U-verse customers may be at risk of remote hacking due to several security flaws of their Arris routers.
Joseph Hutchins of Nomotion revealed in a blogpost that 5 critical vulnerabilities can be found in Arris NVG589 and NVG599 modems that have been updated with the 9.2.2 firmware version. Some of the vulnerabilities can give an attacker control of the modem, allowing them to change the device’s name and password and even reroute traffic to a malicious server.
He adds that it is difficult to determine who is responsible for the flaws, since some of the problems were OEM-specific, while others were not. However, the customized code added by the ISP may have contributed to the problem.