Call us: +61 2 9838 8899
FAX: +61 2 9838 8818

Blog

HomeHome»What’s New»Blog

Application note for CSRF Vulnerability and how to prevent from attacks

Security Alert

Security Alert – CSRF Vulnerability and how to Prevent Attacks
 

In May 2018 DrayTek became aware of CSRF (Cross-Site Request Forgery) attacks against web-enabled devices, including DrayTek routers.

In some circumstances, it may be possible for an attacker to intercept or create an administration session and change settings on the router. Initial reports show that in some cases DNS settings are altered.

To check if your router has been compromised, look at

Security Alert, New Firmware and Application Notes for DrayTek Products

Security Alert

CSRF Vulnerability
 

It has been reported that some web-enabled devices, including some DrayTek routers, have been compromised. The report shows that it may be possible for an attacker to intercept or create an administration session and change DNS and/or other settings on the router.

DrayTek has now released new firmware that addresses this security vulnerability. The firmware can be downloaded from: https://www.draytek.com/en/download/firmware/.

To check if your router has been compromised, look at

New DrayTek 4G LTE Routers – Vigor2862L Series

 

The Vigor2862L series router has most of the functions of the Vigor2862 series routers, plus a slot for a 4G LTE mobile broadband SIM card. The supported SIM cards include those from the major broadband service providers in Australia, Telstra, Optus, Vodafone, etc., as well as those in New Zealand, Spark, 2Degrees and Vodafone with speeds up to 150Mbps downstream and 50Mbps upstream.

In addition to the 4G LTE mobile broadband,

DrayTek Vigor2862Vac Review Published in PC & Tech Authority Magazine Issue Apr 2018

As the National Broadband Network spreads around Australia, people are finding themselves in the market for a new device that lets them connect to it. Those in a Fibre to the Node (FTTN) area need to throw their ADSL 2 modems in the bin and upgrade to a VDSL 2 modem, like the DrayTek Vigor2862Vac.

The Vigor2862Vac not only supports VDSL 2 so it’ll work on the FTTN portion of the

New Vigor2762 Series – VDSL2/ADSL2+ & Gigabit Ethernet WAN Firewall Router

The Vigor2762 Series is VDSL2/ADSL2+ modem/router with Firewall and VPN integrated. It provides 1 RJ-11 WAN port for connecting to xDSL line directly, the embedded xDSL modem is compatible with all the common VDSL and ADSL modulations. On the LAN side is a 4-port 10/100/1000Base TX LAN RJ-45 switch, of which the 4th port can be configured as a WAN port for an Ethernet WAN connection (e.g. NBN FTTP, FTTC,

New Firmware and Application Notes for DrayTek Products ( 20 April 2018)

Latest Video

Disable the LED lights on the Vigor2862 Series
This video shows how to disable the LED indicators on the Vigor2862 series routers for the WAN, USB and LAN ports. This feature is available in firmware version 3.8.8 and above for the Vigor2862 router. It will be added to other router models as in updated firmware.

New Application Notes

Miscellaneous
What is the LED status when Vigor Router is in TFTP mode?
When forcing Vigor