Should I be concerned? What steps need I take?
I only have my laptop which is disconnected from Internet whenever I'm away from it and overnight. The other devices connected wirelessly are our phones (2 Androids) and sometimes my tablet (Android).
copy and pasted
Dear Valued Customer
Important security message about your Rogers Internet service
Hi! We've found an issue with your Rogers internet connection, or your wireless home network, which requires your attention. Below are details - in both technical and simple terms â€“ which is intended to aid you.
In technical terms: A device connected to your Rogers Internet connection is showing signs of an exploitable vulnerability (SSDP).
The SSDP vulnerability is a publicly accessible device that has SSDP running and responding to queries.
This SSDP vulnerability can be exploited by a third party to be used to attack other devices anonymously, in what is called a distributed denial of service attack.
A denial-of-service attack seeks to make a machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a host connected to the internet.
Possible options for removing this vulnerability is disable Universal Plug and Play (UPnP) functionality or deploy firewall rules to allowed only trusted hosts on inbound port 1900/udp. The devices that require securing are usually home routers and firewalls.
In simple terms: This means a security vulnerability could be potentially exploited by a third party to be used for malicious and/ or illegal purposes.
This impacts you in the following ways:
â€¢ Use your machine to participate in a distributed denial of service attack.
â€¢ Your access to the internet could be degraded and disrupted.
Not to worry, here's what you can do:
The subscriber devices connected to networks are not accessible to our diagnostics tools, meaning our agents will not be able to resolve this issue. Below are some best practices to avoid future incidents:
1. Use and maintain anti-virus software. Anti-virus software recognizes and protect your devices against known viruses. It is important to keep your anti-virus software up to date.
2. Change your passwords. Your original password may have been compromised.
3. Keep your operating system and application software up to date. Install software patches to prevent attackers from exploiting known vulnerabilities.
4. Use anti-malware tools. Use a program that detects and removes malware.
5. Donâ€™t download attachments or click links from email addresses you donâ€™t recognize. This is one of the most common vectors for all forms of malware.
6. Use a firewall.
7. Donâ€™t visit website that are known distributors of malware.
8. Remove or disable services or protocols that are not needed.
9. Keep browsers and their plug-ins up to date.
Under the Rogers Terms of Service and Acceptable Use Policy, you are responsible for the security of any device you connect to the service. You are also responsible for any misuse of the service, by you or by any other person with access to the service through your equipment or account. As a result, you must take steps to correct this issue and ensure others do not gain unauthorized access to your service through any means. If you fail to correct this issue, your service may be suspended and/or terminated in accordance with our Rogers Terms of Service and Acceptable Use Policy.
Please review the Acceptable Use Policy specific to this issue: http://www.rogers.com/cms/pdf/en/Rogers-Terms-of-Service-Acceptable-Use-Policy-and-Privacy-Policy-en.pdf
Suggested steps to assist you in resolving your security issue:
Disable Universal Plug and Play (UPnP) functionality or deploy firewall rules to allowed only trusted hosts on inbound port 1900/udp. The devices that require securing are usually home routers and firewalls.
Stay Aware, Stay Informed, Stay Protected.
Keep your browsers, and operating system up to date. Software patches and updates will defend your systems and personal information from many of the most prevalent internet vulnerabilities.
Contact Rogers Technical Support.
Rogers technical support representatives do not have access or visibility to your devices and systems. However if your internet service is impacted, or you need more details on this matter, you can contact a Rogers technical support representative at 1-888-288-4663. If you are a business customer, please contact Business Technical Support at 1-866-727-2141.
Rest assured that your satisfaction and peace of mind are very important to us. We are here to help advised you on steps you must take to resolve this issue in a timely manner.
Please do not reply to this email, as this email inbox is not monitored.
^Trademarks of Rogers Communications, Rogers Communications, 855 York Mills Road, Don Mills ON, M3B 1Z1. Â© 2016
Please Be Advised: Rogers will never ask you for your password or other confidential personal information via email or phone.
If you would like to verify that this email is from Rogers you can contact us at the information listed on your monthly bill
Any emails/phone calls you receive purporting to be from Rogers that you believe to be fake, can be reported to firstname.lastname@example.org
The IP reported below is the IP responding to scans. It is possible a different IP may be listening and responding from the IP below.
data: TIMESTAMP: 2017-08-17 07:38:33
HEADER: HTTP/1.1 200 OK
SYSTIME: Thu, 17 Aug 2017 07:38:35 GMT
SERVER: Linux/2.6.18_pro500, UPnP/1.0, Portable SDK for UPnP devices/1.3.1
Thanks for any assistance
Edited by baymerlou, 11 November 2017 - 09:11 AM.