Cloud Security Alliance

When Simple DNS Mistakes Lead to Big Attacks: Lessons from the MikroTik Botnet

Small DNS misconfigurations enabled a large botnet of MikroTik routers, spoofed trust via SPF flaws, and malware distribution ...
Ars Technica

Trickbot is using MikroTik routers to ply its trade. Now we know why

For years, malicious hackers have been hacking large fleets of MikroTik routers and conscripting them into Trickbot, one of the Internet’s most destructive botnets. Now, Microsoft has finally figured ...
Bleeping Computer

Hundreds of thousands of MikroTik devices still vulnerable to botnets

Approximately 300,000 MikroTik routers are vulnerable to critical vulnerabilities that malware botnets can exploit for cryptomining and DDoS attacks. MikroTik is a Latvian manufacturer of routers and ...
Bleeping Computer

Microsoft creates tool to scan MikroTik routers for TrickBot infections

Microsoft released a scanner that detects MikroTik routers hacked by the TrickBot gang to act as proxies for command and control servers. TrickBot is a malware botnet distributed via phishing emails ...
ITWeb

Affordable internet solutions for ISPs, MSPs, enterprises, individual users using MikroTik

In a recent review of MikroTik routers and switches from real users in Peerspot, the users made a number of insightful comments. These included upsides, such as: "MikroTik offers full enterprise ...
Ars Technica

Trickbot is using MikroTik routers to ply its trade. Now we know why

Is remote enabled by default? As I don't see the average user turning it on, so if it is on by default and has a standard password it's almost like MikroTiki have set thhem up to be vulnerable and ...