
A newly discovered piece of malware called AryStinger has quietly taken over more than 4,300 ageing routers around the world, and it is a useful reminder of a risk many small businesses overlook: the box in the corner that you have not touched in years.
Security researchers report that AryStinger targets older Realtek-based routers and exploits flaws that were publicly known long ago. Once it is in, the attackers do not necessarily go after that business directly. Instead they turn the router into a relay – a stepping stone they use to scan for new victims and hide their tracks behind your internet connection. In other words, your equipment ends up doing the attackers’ dirty work, and your business name could be the one that shows up in someone else’s incident report.
The common thread is age. These devices were never patched, are often well past their support date, and keep running simply because they still pass traffic. For a busy small business that is easy to understand – if it is not broken, why touch it? – but unsupported network gear is exactly what attackers count on.
Here are three practical takeaways:
- Know what you have. Make a short list of every router, modem and Wi-Fi access point on your premises, including the make, model and age.
- Check for updates and end-of-life. If the manufacturer no longer issues security updates for a device, treat it as a liability and plan to replace it.
- Change default logins and turn off remote admin. Many of these attacks rely on factory passwords and management access left open to the internet.
You do not need to be a target to become a victim – automated malware like this sweeps the whole internet looking for the easy doors. A quick review of your network hardware is cheap insurance.
Worried this affects your business? Get a free 15-minute IT check – call Trends IT on 0485 011 911 or visit /contact/.
