D-Link Layer 3 Stackable 10G Managed Switches offer high scalability, availability, and redundancy

D-Link has announced its latest DXS-3610 series Layer 3 Stackable 10G Managed Switches that offer high scalability, high availability, and high redundancy. With 10G Ethernet switching capacity of up to 2.16 Tbps, forwarding rates of up to 1607 Mbps, and 100G uplink port speeds, the DXS-3610 series is extremely powerful. These switches also feature robust physical stacking of up to 12 switches with a total of 1.2T bandwidth. Hot-swappable power modules with load sharing and … More

The post D-Link Layer 3 Stackable 10G Managed Switches offer high scalability, availability, and redundancy appeared first on Help Net Security.

D-Link routers vulnerable to remotely exploitable root command injection flaw

The Digital Defense Vulnerability Research Team uncovered a previously undisclosed vulnerability affecting D-Link VPN routers. D-Link DSR-150, DSR-250, DSR-500 and DSR-1000AC VPN routers running firmware version 3.14 and 3.17 are vulnerable to a remotely exploitable root command injection flaw.

D-Link routers vulnerability

These devices are commonly available on consumer websites/ecommerce sites such as Amazon, Best Buy, Office Depot and Walmart. Given the rise in work-from-home due to the pandemic, more employees may be connecting to corporate networks using one of the affected devices.

Accessible without authentication

The vulnerable component of these devices is accessible without authentication. From both WAN and LAN interfaces, this vulnerability could be exploited over the internet. Consequently, a remote, unauthenticated attacker with access to the router’s web interface could execute arbitrary commands as root, effectively gaining complete control of the router.

With this access, an attacker could intercept and/or modify traffic, cause denial of service conditions and launch further attacks on other assets. D-Link routers can connect up to 15 other devices simultaneously.

Updates are available

“Our standard practice is to work in tandem with organizations on a coordinated disclosure effort to facilitate a prompt resolution to a vulnerability. The Digital Defense VRT reached out to D-Link who worked diligently on a patch.

“We will continue outreach to customers ensuring they are aware and able to take action to mitigate any potential risk introduced by the vulnerability,” states Mike Cotton, senior vice president of engineering at Digital Defense.

D-Link’s advisory provides more details about the updates that have been released, which should be applied.

D-Link unveils four Wi-Fi 6 access points across its network management solutions

D-Link unveiled four new Wi-Fi 6 access points across its Nuclias Connect and Nuclias Cloud network management solutions.

These access points incorporate the latest Wi-Fi 6 standard and are designed to solve connectivity issues better than ever before for key business sectors such as education, hospitality, and retail/SMBs that are experiencing a growing number of users and devices.

D-Link’s new AX3600 Wi-Fi 6 access points (DAP-X2850, and DBA-X2830P) and AX1800 Wi-Fi 6 access points (DAP-X2810 and DBA-X1230P) provide new technological enhancements that allow for all businesses and users to optimize their performance, especially in high density network environments such as supermarkets, schools, busy offices, and factories where multiple users use multiple devices simultaneously.

Designed for operation in both the 2.4 GHz and 5 GHz spectrums, these access points provide more reliable, consistent connections over a longer range. MU-MIMO, OFDMA, and 1024-QAM dramatically reduce latency as well as increase data rate throughput and network capacity.

In addition to enhanced security with support for WPA3 Enterprise wireless encryption, the new access points also provide PoE support, Airtime Fairness to efficiently share coverage among clients, and Band Steering for efficient traffic management.

“Wi-Fi 6 is an exciting technology, offering previously unseen connectivity and even more opportunities for businesses than ever before,” affirmed Mark Chen, President, D-Link.

“At D-Link, we’re committed to being at the forefront of technology. By creating the tools and products that integrate the latest enhancements like Wi-Fi 6 and making them highly accessible for all businesses, we’re developing stronger connections for better business.”

D-Link’s centralized network management solutions allow businesses to manage the new access points and optimize operations and productivity. Nuclias Connect is a free, intuitive software-based platform designed for on-premise network management, offering cost-effective scalability and privacy for SMBs.

Designed for smaller organizations with limited IT knowledge/budget, Nuclias Cloud is a 100% cloud-based network management platform that features effortless deployment, easy management, and unlimited scalability. With two different systems, D-Link has the enterprise Wi-Fi 6 solution for every industry and every business scenario.

DAP-X2850 (Nuclias Connect), and DBA-X2830P (Nuclias Cloud)

  • Dual-band AX3600 with up to 3.6 Gbps combined wireless speeds
  • 4 x 4 MU-MIMO omnidirectional antenna
  • 1 x 2.5G Ethernet + 1 Gigabit Ethernet
  • Supports Link Aggregation

DAP-X2810 (Nuclias Connect) and DBA-X1230P (Nuclias Cloud)

  • Dual-band AX1800 with up to 1.8 Gbps combined wireless speeds
  • 2 x 2 MU-MIMO omnidirectional antenna
  • 1 x Gigabit Ethernet

Chinese Antivirus Firm Was Part of APT41 ‘Supply Chain’ Attack

The U.S. Justice Department this week indicted seven Chinese nationals for a decade-long hacking spree that targeted more than 100 high-tech and online gaming companies. The government alleges the men used malware-laced phishing emails and “supply chain” attacks to steal data from companies and their customers. One of the alleged hackers was first profiled here in 2012 as the owner of a Chinese antivirus firm.

Image: FBI

Charging documents say the seven men are part of a hacking group known variously as “APT41,” “Barium,” “Winnti,” “Wicked Panda,” and “Wicked Spider.” Once inside of a target organization, the hackers stole source code, software code signing certificates, customer account data and other information they could use or resell.

APT41’s activities span from the mid-2000s to the present day. Earlier this year, for example, the group was tied to a particularly aggressive malware campaign that exploited recent vulnerabilities in widely-used networking products, including flaws in Cisco and D-Link routers, as well as Citrix and Pulse VPN appliances. Security firm FireEye dubbed that hacking blitz “one of the broadest campaigns by a Chinese cyber espionage actor we have observed in recent years.”

The government alleges the group monetized its illicit access by deploying ransomware and “cryptojacking” tools (using compromised systems to mine cryptocurrencies like Bitcoin). In addition, the gang targeted video game companies and their customers in a bid to steal digital items of value that could be resold, such as points, powers and other items that could be used to enhance the game-playing experience.

APT41 was known to hide its malware inside fake resumes that were sent to targets. It also deployed more complex supply chain attacks, in which they would hack a software company and modify the code with malware.

“The victim software firm — unaware of the changes to its product, would subsequently distribute the modified software to its third-party customers, who were thereby defrauded into installing malicious software code on their own computers,” the indictments explain.

While the various charging documents released in this case do not mention it per se, it is clear that members of this group also favored another form of supply chain attacks — hiding their malware inside commercial tools they created and advertised as legitimate security software and PC utilities.

One of the men indicted as part of APT41 — now 35-year-old Tan DaiLin — was the subject of a 2012 KrebsOnSecurity story that sought to shed light on a Chinese antivirus product marketed as Anvisoft. At the time, the product had been “whitelisted” or marked as safe by competing, more established antivirus vendors, although the company seemed unresponsive to user complaints and to questions about its leadership and origins.

Tan DaiLin, a.k.a. “Wicked Rose,” in his younger years. Image: iDefense

Anvisoft claimed to be based in California and Canada, but a search on the company’s brand name turned up trademark registration records that put Anvisoft in the high-tech zone of Chengdu in the Sichuan Province of China.

A review of Anvisoft’s website registration records showed the company’s domain originally was created by Tan DaiLin, an infamous Chinese hacker who went by the aliases “Wicked Rose” and “Withered Rose.” At the time of story, DaiLin was 28 years old.

That story cited a 2007 report (PDF) from iDefense, which detailed DaiLin’s role as the leader of a state-sponsored, four-man hacking team called NCPH (short for Network Crack Program Hacker). According to iDefense, in 2006 the group was responsible for crafting a rootkit that took advantage of a zero-day vulnerability in Microsoft Word, and was used in attacks on “a large DoD entity” within the USA.

“Wicked Rose and the NCPH hacking group are implicated in multiple Office based attacks over a two year period,” the iDefense report stated.

When I first scanned Anvisoft at Virustotal.com back in 2012, none of the antivirus products detected it as suspicious or malicious. But in the days that followed, several antivirus products began flagging it for bundling at least two trojan horse programs designed to steal passwords from various online gaming platforms.

Security analysts and U.S. prosecutors say APT41 operated out of a Chinese enterprise called Chengdu 404 that purported to be a network technology company but which served a legal front for the hacking group’s illegal activities, and that Chengdu 404 used its global network of compromised systems as a kind of dragnet for information that might be useful to the Chinese Communist Party.

Chengdu404’s offices in China. Image: DOJ.

“CHENGDU 404 developed a ‘big data’ product named ‘SonarX,’ which was described…as an ‘Information Risk Assessment System,’” the government’s indictment reads. “SonarX served as an easily searchable repository for social media data that previously had been obtained by CHENGDU 404.”

The group allegedly used SonarX to search for individuals linked to various Hong Kong democracy and independence movements, and snoop on a U.S.-backed media outlet that ran stories examining the Chinese government’s treatment of Uyghur people living in its Xinjian region.

As noted by TechCrunch, after the indictments were filed prosecutors said they obtained warrants to seize websites, domains and servers associated with the group’s operations, effectively shutting them down and hindering their operations.

“The alleged hackers are still believed to be in China, but the allegations serve as a ‘name and shame’ effort employed by the Justice Department in recent years against state-backed cyber attackers,” wrote TechCrunch’s Zack Whittaker.

D-Link launches WiFi 6 Router with ultra-fast speeds and efficient performance

D-Link made available its EXO AX5400 Mesh WiFi 6 Router (DIR-X5460) with ultra-fast speeds and efficient performance benefits of WiFi 6 protocol.

The AX5400 Router is the latest model in D-Link’s trio of best-in-class WiFi 6 routers developed for superior coverage, increased capacity, reduced network congestion, and improved device battery life in device-dense homes.

As multi-tasking households seek uninterrupted coverage for smooth media streaming, video chats, and more, the DIR-X5460 has the performance needed for smart connected homes.

“The future of WiFi is here. With the current influx of digital demands as households increasingly work and learn online, many require a new premium router to handle the network strain,” said Raman Bridwell, vice president, products and services at D-Link Systems.

“Our new DIR-X5460 WiFi 6 Router is poised to overcome frustrating lag and buffer, replacing it with high-grade network efficiencies to meet simultaneous bandwidth-heavy activities like 4K/8K streaming or online classwork.”

Dominant WiFi 6 dual-band functionality complemented by durable components

D-Link’s AX5400 Router takes advantage of WiFi 6 standards for stellar dual-band performance up to 90% faster at 2.4GHz band and 176% faster at the 5GHz than previous generation WiFi.

It features up to 4X greater capacity than Wireless-AC for ultra-efficient support of Ultra 4K video streams, FPS online gaming, and large file downloads, and other emerging smart home activities.

Outfitted with prosumer-grade parts, the AX5400 Router is engineered to withstand heavy bandwidth processing. Built-in high powered amplifiers with a 160MHz channel capacity ensure exceptional data throughput and the fastest theoretical speeds possible.

Combined with a six-stream architecture, the DIR-X5460 significantly reduces latency for simultaneous WiFi tasks.

Additional advanced capabilities:

  • Built with industry-standard Mesh technology, the DIR-X5460 provides whole-home WiFi coverage and a single network name. Users enjoy seamless connectivity throughout the entire home
  • App-based setup and management via free D-Link WiFi App (Android and iOS)
  • Expand connectivity with dual USB 2.0 and USB 3.0 ports along with six high-gain antennas

The DIR-X5460 and entry-level DIR-X1560 Mesh WiFi 6 Routers are joined by the EXO AX4800 Mesh WiFi 6 model (DIR-X4860) fulfilling D-Link’s promise to deliver future-ready technologies valued by cutting-edge households.

D-Link’s PoE surveillance switch series is designed for surveillance in homes and small offices

D-Link announced its new PoE surveillance switch series, which includes the 9-Port PoE Unmanaged Surveillance Switch (DSS-100E-9P) and the 18-Port PoE Unmanaged Surveillance Switch (DSS-100E-18P).

Supporting long range PoE delivery, DSS-100E switches are a cost-effective solution that provide a versatile and reliable surveillance network. Long-reach PoE connection that can reach 250 meters enables the switch to power devices in far-reaching or remote network deployments.

Combined with the DPE-302GE PoE Extender, the connection can reach 650 meters, maximizing user deployment flexibility while also saving time and cost. Simple plug-and-play installation allows users to easily connect and supply power to PoE-capable devices.

The switches also offer 6kV surge protection, enhancing safety and reliability for the switch and all connected devices. The DSS-100E series switches are also capable of supplying up to 30 watts per port.

The 9-Port PoE Unmanaged Surveillance Switch offers eight 10/100Mbps PoE ports and 1 Gigabit uplink port with Max PoE power budget of 92W. With auto detect mode, the DSS-100E-9P can detect long range requirements and automatically activate extended mode without any manual configuration, making life easy for users.

The 18-Port PoE Unmanaged Surveillance Switch features 16 10/100Mbps PoE Ports with 1Gbe port and Gbe/SFP combo port and its max PoE power budget is 230W. Users can effortlessly configure with a DIP switch that supports three operating modes (Standard, Isolation, and Extended) depending on what is the most suitable for their deployment needs.

D-Link announces new 5G solutions to elevate mobile internet connectivity

D-Link announced their new 5G solutions that create a world of wireless possibilities whether at home, at the office, or on the go. 5G networks elevate mobile internet connectivity and enhance IoT technology and devices to a level that has never been experienced before.

Delivering supercharged performance and extreme reliability, 5G will redefine and transform industries and completely change the way people live. D-Link enables enhanced broadband capacity, extremely low latency, super high bandwidth, and next-generation speeds with the DWP-1020 5G Outdoor CPE, DWR-978 5G Wi-Fi Router, and DWR-2101 5G Wi-Fi 6 Mobile Hotspot.

“D-Link believes that 5G technology has and will continue to develop aggressively and create incredible, valuable user experiences,” said D-Link Corporation Chairman John Lee. “These new game-changing 5G innovations demonstrate D-Link’s commitment toward promoting an ever-evolving and improving world of connectivity.”

CES 2020 Innovation Award Honoree DWP-1020 is a 5GNR Sub 6GHz + mmWave CPE that is designed for installation on the exterior of a home or business building in order to maximize signal reception, especially for mmWave frequencies. The device is rated to IP65 waterproof to protect it against the elements and is PoE-powered via a 5 Gbps Ethernet port for convenient installation.

The DWR-978 supports 5G NR Sub 6 GHz frequencies and allows users to access worldwide mobile broadband networks. It also provides a physical WAN port that supports a wide variety of connection types.

Designed for indoor use, the DWR-978 is perfect as a replacement for traditional wired service. Additional features include an RJ-11 port for VoLTE functionality and D-Link Intelligent QoS technology for prioritizing important network traffic.

Recognized as a CES 2020 Innovation Award Honoree, the DWR-2101 is one of the world’s first portable hotspots to combine the capacity of Wi-Fi 6 and speed of 5G and can provide high-speed, low latency wireless access at home, at the office, or on-the-go.

The DWR-2101 is also ideal for business and leisure travelers as it can support a wide range of international 5G bands.

News Wrap: Amazon Ring Risks, Stalkerware, and D-Link Router Flaws

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.