Rabitə və İnformasiya Texnologiyaları Nazirliyinin elektron xəbər xidməti
Electronic Security Service warns citizens about danger of network devices
In recent days, there has been an upsurge in the number of incidents related to Wi-Fi security in our country, mainly due to the capture of users’ network devices (routers and modems) and unwanted renaming of Wi-Fi networks.
The incidents are being investigated by the Electronic Security Service under the Ministry of Transport, Communications and High Technologies. The investigation revealed that the main reason for the attacks was the lack of simple settings for the security of network devices. For example, standard and weak passwords (admin, password, 12345, etc.), identifying information in network names (first name, last name, phone number, address, etc.) were used for devices, and no software updates were made.
As we know, all devices in our home (phone, computer, smart devices, etc.) are connected to the internet through a router. When the router is configured incorrectly, important security settings are not performed, and weak and standard passwords are used, they can be easily intercepted by intruders.
When a router is infected, attackers can collect personal information from users by monitoring their traffic, shutting down the router, and attacking other devices on the network. This is why the security of the router is as important as the security of the computer.
The Electronic Security Service under the Ministry of Transport, Communications and High Technologies recommends that citizens, without losing any time, make the following settings:
To make the following settings, when you connect your computer to the router, you need to access the control panel by entering the router’s IP address (usually displayed on the back of the router) in a web browser. In doing so, you will be prompted to create a username and password. This information can be obtained from the instructions for use of the router or modem, or by searching on the internet for the manufacturer and model.
– First, change the username and password, assigned by default to the router. These passwords can be easily obtained from the internet, depending on the model and manufacturer. Because of this, choose a long and complex password for your router (10-12 characters long, consisting of a combination of upper and lower case letters, numbers, and symbols) and do not share it with others.
– Update the firmware of your router regularly. On the latest generation routers, the software is updated automatically, for older devices the update must be done manually from time to time. Devices that do not accept the update need to be replaced.
– Disable the “Remote administration” function and use a cable without a physical connection to the router to configure the router settings.
– Encrypt your Wi-Fi network using the latest encryption standards (WPA2 or WPA3). If WPA2 is unavailable, the router needs to be replaced. When choosing a password for Wi-Fi, do not use consecutive numbers and buttons, your personal information. You must choose a 10 to 12 character complex password consisting of a combination of upper and lower case letters, numbers and symbols.
– The Wi-Fi network name (SSID) must not contain any identifying information (name, address, phone number, business addresses, etc.). Considering the fact that each router has its own vulnerabilities and is known to hackers, standard network names should not be used.
– It is recommended to enable firewall on router and modem, disable UPnP and WPS functions.
– Wi-Fi password should not be shared with others and should be updated regularly.
– It is recommended to use the “Guest network” function. This allows you to segment your network and allow visitors to access only one segment of it.
We are therefore asking citizens to take this issue especially seriously and adjust the specified settings without losing any time. If you encounter any of the problems mentioned above, you can contact your ISPs that configure the router.
In case of any change in the name of the Wi-Fi network without notifying the user or suspicion of infection of the routers, please immediately contact the Electronic Security Service through the official website www.cert.az or by e-mail reports@cert.az, as well as through the pages on social networks.
14/08/20 Çap et