Tren Micro warns that “the competition is so fierce that criminals uninstall any malware they find on the destination routers, pushing their rivals aside to claim full control of the device «.

attacks on home routers are growing. Research by security company Trend Micro warns of a new wave of such attacks, seeking to recruit devices for use in IoT botnets .

The increase in attacks started in late 2019 , when brute-force login attempts against routers increased tenfold, from 23 million in September to nearly 249 million in December. More recently, in March this year, some 194 million brute force logins were detected. Experts believe the abuse against these devices will continue, as cybercriminals can easily monetize them.

In fact, they speak of «fierce» competition between the criminals themselves, who fight each other to compromise as many routers as possible. «The competition is so fierce that criminals uninstall any malware they find on destination routers, pushing their rivals aside to claim full control of the device,» , they explain from Trend Micro. They then turn to clandestine sites to drive DDoS attacks or to help anonymize other attacks, such as click fraud, data theft, and account hijacking.

Another indicator of the level this threat is reaching has to do with devices seeking to open telnet sessions with other IoT devices. In mid-March, around 16,000 devices tried it in a single week.

“With a large majority of the population currently dependent on home networks for their work and studies, what happens to your router has never been more important. Cyber ​​criminals know that the vast majority of home routers are insecure as they have the default default credentials and have increased attacks on a massive scale, «says Jon Clay, director of global communications for Trend Micro.

«For the home user, that means hijacking their bandwidth and slowing down their network,» says Clay, in addition to involving him in criminal activities and preventing them from accessing key parts of the internet.»And for companies that are targeted for secondary attacks, these botnets can totally take down a website, as we’ve seen in high-profile attacks in the past.»

To keep home routers safe, especially in this age of mass telecommuting, Trend Micro launches four basic tips : using a strong password and changing it from time to time When, update to the latest firmware , check logs for strange behavior and only allow logins from the local network .