Realtek vulnerability affects more than 65 hardware manufacturers

A security vulnerability within the Realtek RTL819xD module allows attackers to gain access to the device, installed operating systems and other network devices. The issue is understood to affect at least 65 hardware manufacturers and hundreds of thousands of devices.

The chips in question are used by almost all well-known manufacturers and can be found in VoIP and wireless routers, repeaters, IP cameras and smart lighting controls.

"Our security reseachers have discovered and analysed this vulnerability, which affects hundreds of thousands of devices. We notified Realtek, and they immediately responded and provided an appropriate patch,” said Florian Lukavsky managing director of firmware testing company, IoT Inspector. “Manufacturers using vulnerable Wi-Fi modules are strongly encouraged to check their devices and provide security patches to their users.”

IoT Inspector probes the firmware of IoT devices such as routers, IP cameras or printers. In this particular case, the company is making its platform available to potentially affected manufacturers and users for a free check.

According to Forrester, only 38% of enterprise security decision makers worldwide have sufficient policies and tools in place to properly manage IoT devices.

"We find new security vulnerabilities every day, most of which are directly mandated by manufacturers," Lukavsky explains. "The IT security mindset needs to include all devices connected to networks, regular audits and patches. Sometimes, a patch is itself the source of a new vulnerability. Few affected companies respond as quickly and thoroughly as Realtek. However, manufacturers are now also required to patch vulnerable Realtek components in their devices, while users are urged to check their devices and update them if necessary."

    Share Story:

Recent Stories

Financial institutions were early adopters of cyber security and insurance. Are they still on top of the game?
Managing huge amounts of sensitive data online makes financial institutions a prime target for hackers. As such, the sector was an early cohort for insurers in creating cyber cover. Since then, the market has evolved almost beyond recognition. It continues to challenge itself to this day, complying with rigorous regulatory demands and implementing avant-garde enhancements to keep abreast of the ever-changing risks. Published June 2021

Manufacturing: An industry at risk amid great technological change
Of the many sectors of business, manufacturing companies are among the most at risk from cyber threats. How has the sector evolved to make it so vulnerable and what does the task of managing cyber exposure in a manufacturing company look like? CIR’s latest podcast with Tokio Marine HCC sought to answer all these questions and more. Published April 2021