August 20, 2024 at 05:36PM Two Congressional representatives, Rep. John Moolenaar and Rep. Raja Krishnamoorthi, have called for an investigation into TP-Link Technologies, the leading Wi-Fi router provider in the US. Concerns have been raised about the company’s routers being manufactured in China, potentially making them vulnerable to state-sponsored hacking and compliance with Chinese intelligence … Read more
May 28, 2024 at 02:45AM A critical security flaw, CVE-2024-5035, with a 10.0 CVSS score, was discovered in TP-Link Archer C5400X router, allowing remote code execution. The flaw, patched in version 1_1.1.7, arises from a binary related to radio frequency testing, exposing a network listener. TP-Link’s fix blocks commands with special characters. Other undisclosed vulnerabilities … Read more
May 27, 2024 at 03:19PM The TP-Link Archer C5400X gaming router faced a critical security risk, enabling remote attackers to execute unauthorized commands. The flaw, tracked as CVE-2024-5035, was identified through static analysis and affected TCP ports 8888, 8889, and 8890. TP-Link has released a firmware update to address this vulnerability, advising all users to … Read more
October 10, 2023 at 04:36PM The Mirai-based DDoS malware botnet known as IZ1H9 has expanded its targets to include Linux-based routers and routers from brands like D-Link, Zyxel, TP-Link, and TOTOLINK. Fortinet researchers have observed high exploitation rates in September, with tens of thousands of attempts on vulnerable devices. IZ1H9 compromises devices, enlists them in … Read more
October 10, 2023 at 11:54AM A variant of the Mirai botnet, known as IZ1H9, has updated its tools with 13 new exploits targeting vulnerabilities in IoT devices from various manufacturers, including D-Link, TP-Link, Zyxel, and others. This variant is highly active in exploiting these vulnerabilities for distributed denial-of-service (DDoS) attacks. Fortinet observed thousands of attack … Read more