FRITZ!Box modems hacked

Discussion in 'other security issues & news' started by FanJ, Feb 6, 2014.

Thread Status:
Not open for further replies.
  1. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
    There are several reports that FRITZ!Box modems have been "hacked".
    FRITZ!Box modems are, for example, "widely" used in The Netherlands and Germany.
    Hackers were able to use the modems to do expensive phonecalls.

    Article in Dutch at nu.nl :
    http://www.nu.nl/tech/3694994/xs4all-klanten-slachtoffer-gehackte-routers.html

    Article in German at Der Spiegel :
    http://www.spiegel.de/netzwelt/gadgets/avm-fritzbox-angriff-auf-den-router-a-951717.html
    The big Dutch provider XS4ALL has a blog about it in Dutch:
    https://blog.xs4all.nl/2014/02/06/telefoniemisbruik/
    AVM, the manufacturer of the FRITZ!Box modem, has a security advisory:
    http://www.avm.de/en/Sicherheit/advice.html
     
  2. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
  3. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
    Firmware updates for the FRITZ!Box are available or will be available soon.

    Statement at the AVM (the manufacturer) site:
    "Attacks on FRITZ!Box clarified - Security advice still in effect - Updates will be released shortly"
    http://www.avm.de/en/news/artikel/2014/Attacks_on_FRITZBox_clarified.html

    Security advisory by AVM:
    "Important security information for FRITZ!Box users with remote access enabled (MyFRITZ! and HTTPS)"
    http://www.avm.de/en/Sicherheit/advice.html

    Update at the blog of the Dutch provider XS4ALL (in Dutch):
    https://blog.xs4all.nl/2014/02/08/u...4all.nl/2014/02/08/update-telefonie-misbruik/
     
  4. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
    I've been working lately on a friend's FRITZ!Box modem, model 7270_v2.
    I had discovered that there was some kind of anomaly (or, if you will, contradiction) from the side of AVM. The latest firmware I could get (running the in-build updater) was 54.05.51, while he following file at the AVM site was telling it should be 54.05.52:
    ftp://download.avm.de/fritz.box/fritzbox.fon_wlan_7270_v2/firmware/english/info.txt
    I informed AVM about it. Today I checked again the friend's modem for firmware update, and now I got indeed version 54.05.52.
    I am not saying that it was me who triggered AVM to check things again at their site. It could also have been something like propagating through the servers/internet.
    Bottom line: keep checking for firmware updates in case you have a FRITZ!Box modem.
     
  5. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    3,771
    Location:
    Outer space
    How to see if your system is affected and more info can be found here:
    http://www.avm.de/en/Sicherheit/advice.html
     
  6. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
    The whole issue seems to be far more serious. It seems to be not only about Remote Access.

    Heise site (in German)
    http://www.heise.de/newsticker/meld...-AVM-Router-auch-ohne-Fernzugang-2115745.html

    Official German organisation BSI "Bundesamt für Sicherheit in der Informationstechnik"
    https://www.bsi.bund.de/DE/Presse/Kurzmitteilungen/Kurzmit2014/Update_FritzBox_180214.html

    Dutch provider XS4ALL:
    https://blog.xs4all.nl/2014/02/11/nieuwe-update-telefonie-fraude/

    Dutch site security.nl
    https://www.security.nl/posting/378746/%27Lek+in+FRITZ!Box+modems+ernstiger+dan+gedacht%27

     
  7. BoerenkoolMetWorst

    BoerenkoolMetWorst Registered Member

    Joined:
    Dec 22, 2009
    Posts:
    3,771
    Location:
    Outer space
    Repeaters and Powerline adapters also vulnerable:

    http://www.avm.de/de/News/artikel/2014/update_alle_gefaehrdeten_geraete.html

    http://webwereld.nl/beveiliging/81435-ook-fritz-repeaters-kwetsbaar-voor-hack-op-afstand
     
  8. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
    It looks like that AVM has very recently released again firmware updates for the FRITZ!Box modems.
    So again: check for firmware updates in case you use a FRITZ!Box !
     
  9. Rasheed187

    Rasheed187 Registered Member

    Joined:
    Jul 10, 2004
    Posts:
    8,046
    Location:
    The Netherlands
    I must say that this a real fiasco, quite an embarrassment for the FRITZ!Box maker and also for XS4ALL. :thumbd:
     
  10. FanJ

    FanJ Updates Team

    Joined:
    Feb 9, 2002
    Posts:
    2,564
    The Dutch provider XS4ALL is going to push firmware updates for the FRITZ!Box.
    See the XS4ALL blog post from 27 Feb 2014 (in Dutch):
    "XS4ALL voorziet modems automatisch van nieuwe firmware"
    https://blog.xs4all.nl/2014/02/27/xs4all-voorziet-modems-automatisch-van-nieuwe-firmware/
    They give also a link in that blog post in case you don't want that to happen.

    Thread also at Tweakers (in Dutch):
    "Xs4all gaat lek in FritzBox-modems op afstand dichten"
    http://tweakers.net/nieuws/94596/xs4all-gaat-lek-in-fritzbox-modems-op-afstand-dichten.html
     
Loading...
Thread Status:
Not open for further replies.