Alert issued to businesses and residents using DrayTek routers

Around 440 routers affected on Island

A warning has been issued to businesses and residents who use routers manufactured by DrayTek.

The Cyber Security Centre for the Isle of Man (CSC) says critical issues have been identified in widely used DrayTek routers which allow attackers to easily hack in, potentially compromising vital infrastructure, businesses, and personal data.

A router is the small device that acts as a bridge to allow your systems to access the internet via telephone or fibre.

It is estimated that there are around 440 DrayTek routers affected on Island. 

Anyone using one is being urged to take immediate action to address these vulnerabilities.

Users are urged to:

• Check for updates and ensure DrayTek router firmware is up to date.
• Apply patches by following the manufacturer’s instructions to apply any available security patches.
• Regularly check for updates from the CSC and DrayTek.
• Speak to their IT provider about patches and updates

Devices which have not been updated can act as gateways for attackers, enabling them to see and modify all traffic passing through the router.

This means they can access sensitive information such as login details, financial data or personal correspondence, it also means malware could be uploaded to a network.

Director at the Cyber Security Centre for the Isle of Man, Mike Haywood said: "Patching and updating your kit is not optional; it’s essential. 

"Vulnerable equipment remains widespread across the Island, and complacency can, and will, lead to system compromises."

Residents and organisations are encouraged to report any cyber concerns through the CSC’s online portal, or for more information and advice visit the CSC webpage or call (01624) 685557.