We have become aware of security reports with DrayTek routers related to the security of web administration when managing DrayTek routers.
In some circumstances, it may be possible for an attacker to intercept or create an administration session and change settings on an affected router. The reports appear to show that DNS settings are being altered. Specific improvements have been identified as necessary to combat this and DrayTek are in the process of producing and issuing new firmware.
Until new firmware is available and installed, we advise that DNS entries must be checked to ensure they are not going to any random IPs, when logging in to the device.
You will need to ensure that all stock devices and car kit items are updated to the latest firmware ASAP.
Your firewall may limit the IP addresses that the website is accessible from, but this hasn’t been proven to restrict the vulnerability.
We recommend that you upload the new firmware as soon as possible.
You can read more here.
The three pillars of Mirus are:
Delivering outstanding service.
Offering strategically successful solutions.
Providing consistent customer satisfaction.