VPNFilter malware ... Telus routers affected/infected?


This thread's discussion is locked. If it doesn't give you the information you need, head to its forum board for active discussions or to start a new discussion.


'Just came across an alarming but very informative article about the Russian router malware known as VPNFilter :


My question is, should Telus home services subscribers be concerned about this troubling development and - if so - what steps should we take to protect ourselves? 'Would love it if a Telus rep could answer this ...

Community Power User
Community Power User


Better article including FAQ (scroll down): https://www.symantec.com/blogs/threat-intelligence/vpnfilter-iot-malware


There are a number of antivirus programs out there that will detect the malware as a variant of Linux.VPNFilter so it should be detectable if present.


The malware appears to be mainly affecting older routers though it is difficult for security researchers to detect remotely. Since Telus' gateways are updated regularly, they are less likely to be affected. Actiontec is not included in the list of affected devices. The attack requires specific software to be present on the router and not all routers have it.


One main thing the malware looks for is a router that is still using the default password. If you previously have changed the default password on your router, that will reduce your chances of getting affected.


If you find a post useful, please give the author a "Like" or mark as an accepted solution if it solves your trouble. Smiley Happy

Users of the Actiontec modem/router should be OK as there is a notice on the Actiontec site that says their devices are safe from VPNFilter.