FBI: End-of-life routers hacked for cybercrime proxy networks

The FBI warns that threat actors are deploying malware on end-of-life (EoL) routers to convert them into proxies sold on the 5Socks and Anyproxy networks. These devices, which were released many years back and no longer receive security updates from their vendors, are vulnerable to external attacks leveraging publicly available exploits to inject persistent malware. Once compromised, they are added to residential proxy botnets that route malicious traffic. In many cases, these proxies are used by cybercriminals to conduct malicious activities or cyberattacks. "With the 5Socks and Anyproxy network, criminals are selling access to compromised routers as proxies for customers to purchase and use," explains the FBI Flash advisory. "The proxies can be used by threat actors to obfuscate their identity or location." The advisory lists the following EoL Linksys and Cisco models as common targets: Linksys E1200, E2500, E1000, E4200, E1500, E300, E3200, E1550 Linksys WRT320N, WRT310N, WRT ... Read full article.