Question
Issue: How to reboot home and small office router to get rid of VPNFilter?
I have heard the news about the Russian-related malware, called VPNFilter! I think my device might be infected. However, I'm still not sure. It would be very helpful if you would explain how to detect this threat and how to reboot my router in case it is necessary. Thanks!
Solved Answer
VPNFilter is a malware that might be developed by infamous Russian hacking group known under the names of Fancy Bear, Pawn Storm, APT-28, and Sofacy Group[1]. According to the analysis, this cyber threat dangerous and might make the device unusable or collect sensitive data.
FBI urges people to reboot their rooters to make sure that the 3-stage VPNFilter malware would be eliminated[2]. Although, people keep asking how to know whether their devices are infected. Experts have managed to gather the list of potentially compromised devices[3]:
- Netgear DGN2200, R6400, R7000, R8000, WNR1000, and WNR2000;
- Linksys E1200, E2500, and WRVS4400N;
- QNAP TS251 and TS439 Pro;
- Mikrotik 1016, 1036, and 1072;
- TP-LINK R600VPN.
However, cybersecurity researchers advise all users to take precautionary measures and power cycle their devices to make sure that VPNFilter removal is successful. For that check the instructions below and learn how to reboot your router. Afterward, the second and third stage of the malware won't persist on the device.
If you want to remove VPNFilter completely, the router must be reset to the factory state. We strongly advise you to do so, as it will ensure that the malware won't reappear on the device after some time. Also, other devices on the network will be protected from the infection.
Guide on how to reboot your router and reset factory settings
Note that it is critical to reset the factory settings in order to get rid of VPNFilter. Unfortunately, if you fail to do so, there is a substantial risk that the infection might spread across the network and other devices. We strongly recommend you to pay extreme attention during the procedure.
Method 1. Power Cycle the device
Most of the routers can be rebooted easily. All you need to do is search for the restart button on the router and hit it for approximately 10 seconds.
The power light should start blinking, and once the device is power cycled, it remains in solid color. Although, other more sophisticated routers have apps that allow to do it remotely.
You can find the instructions on how to reboot each of the affected routers here:
Optimize your system and make it work more efficiently
Optimize your system now! If you don't want to inspect your computer manually and struggle with trying to find issues that are slowing it down, you can use optimization software listed below. All these solutions have been tested by ugetfix.com team to be sure that they help improve the system. To optimize your computer with only one click, select one of these tools:
Access geo-restricted video content with a VPN
Private Internet Access is a VPN that can prevent your Internet Service Provider, the government, and third-parties from tracking your online and allow you to stay completely anonymous. The software provides dedicated servers for torrenting and streaming, ensuring optimal performance and not slowing you down. You can also bypass geo-restrictions and view such services as Netflix, BBC, Disney+, and other popular streaming services without limitations, regardless of where you are.
Don’t pay ransomware authors – use alternative data recovery options
Malware attacks, particularly ransomware, are by far the biggest danger to your pictures, videos, work, or school files. Since cybercriminals use a robust encryption algorithm to lock data, it can no longer be used until a ransom in bitcoin is paid. Instead of paying hackers, you should first try to use alternative recovery methods that could help you to retrieve at least some portion of the lost data. Otherwise, you could also lose your money, along with the files. One of the best tools that could restore at least some of the encrypted files – Data Recovery Pro.
- ^ Linas Kiguolis. FBI asks to reboot routers in U.S. to stop Russian malware attack. 2Spyware. Security and Spyware News.
- ^ Foreign cyber actors target home and office routers and networked devices worldwide. IC3. Internet Crime Complaint Center.
- ^ Anthony Karcz. How To Reboot Your Router, Comply With The FBI's Request, And Protect Yourself. Forbes. Global media company.