FRITZ! news - Important security information for FRITZ!Box users with remote access enabled
Important security information for FRITZ!Box users with remote access enabled
In recent days there have been several reports of fraudulent use of telephone services connecting through FRITZ!Box routers. It appears that the routers were accessed from the outside and used to make calls to value added telephone services, incurring substantial charges. According to our latest information the perpetrators already had the account information needed to access the FRITZ!Boxes at their disposal. How the perpetrators obtained this account information is currently being investigated. AVM is working closely with the investigating authorities to solve the cases.
The attacks affect only those users who have enabled remote access to their FRITZ!Boxes from the Internet, for instance via MyFRITZ! service. These functions are switched off by default.
As a temporary safety precaution, AVM recommends that all FRITZ!Box users who have enabled Internet access to the FRITZ!Box via HTTPS (port 443) disable this option. Instructions on how to do this - and also on disabling other services within the FRITZ!Box - has been published on the AVM Security pages.
After disabling Internet access via HTTPS (port 443), FRITZ!Box services like MyFRITZ! and FRITZ!NAS are no longer available and the FRITZ!Box user interface can no longer be accessed from on the go. But you can continue to use all Internet and home network applications safely at home.
AVM is informing its users about the latest developments on www.avm.de/en.
Feb 06, 2014