A bug in sky routers by researcher Raf Fini von. found Pen test partner, has shown that over six million devices could have been compromised by hacking.
The security consultancy found that a hacker could easily reconfigure a home router simply by directing a user to a malicious website via a phishing email.
Then they could “take over someone’s online life” and steal online banking passwords, said Ken Munro of Pen Test Partner BBC News.
“Which ones?” The consumer protection agency warned customers in May that millions of routers had missed security updates for years, making them a place to sit for hackers.
Regarding the vulnerability affecting those who did not change the default password, Sky said:
“We take the security of our customers very seriously.”
“After we were made aware of the risk, we started looking for a solution to the problem and can confirm that a solution has been provided for all products made by Sky.”
It took 18 months to resolve the problem.
How to check if your router has been hacked
If successful, a hacker can gain control of every device connected to your router and thus gain access to valuable private information.
You can check if your router has been hacked with these simple steps:
- Check that your login details are still working. If not, the hacker may have changed it.
- If possible, log into your router’s dashboard. If you spot an unknown device on the network, it could be a hacker.
- One tell-tale sign that you have been hacked is when you receive ransomware messages. They will ask for payment so that you can regain access to your network
In any of these cases, you should turn off your router and contact your broadband provider.
Which Sky routers were affected?
The following models were affected by a potential hacking vulnerability:
- Sky-Hub 3 (ER110)
- Sky-Hub 3.5 (ER115)
- Booster 3 (EE120)
- Sky-Hub (SR101)
- Sky-Hub 4 (SR203)
- Amplifier 4 (SE210)
Customers who have one of these can now have it exchanged for free.