{"id":4788,"date":"2016-12-02T10:19:57","date_gmt":"2016-12-02T09:19:57","guid":{"rendered":"http:\/\/blog.actn.fr\/?p=4788"},"modified":"2016-12-02T10:19:57","modified_gmt":"2016-12-02T09:19:57","slug":"communique-concernant-les-attaques-informatiques-sur-les-modems-routeurs-zyxel","status":"publish","type":"post","link":"https:\/\/blog.actn.fr\/?p=4788","title":{"rendered":"Communiqu\u00e9 concernant les attaques informatiques sur les modems-routeurs Zyxel"},"content":{"rendered":"<p>\t\t\t\t<![CDATA[<img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-4559 aligncenter\" src=\"http:\/\/blog.actn.fr\/wp-content\/uploads\/2016\/09\/Zyxel_logo_2016.jpg\" alt=\"Zyxel_logo_2016\" width=\"307\" height=\"108\" \/>\n\n\n<p style=\"text-align: justify;\">1er d\u00e9cembre 2016<\/p>\n\n\n\n\n<p style=\"text-align: justify;\"><strong>Situation<\/strong><\/p>\n\n\n\n\n<p style=\"text-align: justify;\">Zyxel connait actuellement une s\u00e9rie d\u2019attaques informatiques qui ciblent certains de ses \u00e9quipements. Ces attaques s\u2019appuient sur une faille de s\u00e9curit\u00e9, exploit\u00e9e par des pirates pour s\u2019introduire dans les \u00e9quipements et y ex\u00e9cuter un logiciel malveillant.<\/p>\n\n\n\n\n<p style=\"text-align: justify;\">Cette faille se situe au niveau des protocoles de management et de provisionning TR-064 et TR-069, permettant \u00e0 des personnes non autoris\u00e9es d\u2019acc\u00e9der aux \u00e9quipements via le port 7547 et de modifier leur configuration.<\/p>\n\n\n\n\n<p style=\"text-align: justify;\">Il est important de noter que seuls les \u00e9quipements ayant la fonctionnalit\u00e9 TR-069 activ\u00e9e sont vuln\u00e9rables. Cette fonctionnalit\u00e9 est d\u00e9sactiv\u00e9e par d\u00e9faut, et activ\u00e9e uniquement sur demande pour les Fournisseurs d\u2019Acc\u00e8s Internet (FAI).<\/p>\n\n\n\n\n<p style=\"text-align: justify;\">Apr\u00e8s analyse, Zyxel pr\u00e9cise que seuls les \u00e9quipements ADSL int\u00e9grant les chipsets Econet RT63365 et MT7505 avec respectivement les versions SDK #7.3.37.6 et #7.3.119.1 v002 suivants sont concern\u00e9s. Les mod\u00e8les suivants sous garanti sont concern\u00e9s :<\/p>\n\n\n\n\n\n<ul>\n \t\n\n<li style=\"text-align: justify;\">AMG1202-T10B<\/li>\n\n\n \t\n\n<li style=\"text-align: justify;\">AMG1302-T10B<\/li>\n\n\n \t\n\n<li style=\"text-align: justify;\">AMG1302-T11C<\/li>\n\n\n \t\n\n<li style=\"text-align: justify;\">AMG1312-T10B<\/li>\n\n\n<\/ul>\n\n\n\n\n<p style=\"text-align: justify;\"><strong>Solution<\/strong><\/p>\n\n\n\n\n<p style=\"text-align: justify;\">Conscient de l\u2019impact de ces attaques pour nos clients, Zyxel a mis en place des proc\u00e9dures correctives avec les FAI utilisant ces \u00e9quipements.\nPour les utilisateurs n\u2019\u00e9tant pas pass\u00e9 par un FAI pour l\u2019acquisition de l\u2019\u00e9quipement, Zyxel recommande de mettre \u00e0 jour le firmware de l\u2019\u00e9quipement pour une protection maximum.<\/p>\n\n\n\n\n<p style=\"text-align: justify;\"><a href=\"http:\/\/www.zyxel.fr\"><span style=\"color: #0000ff;\">www.zyxel.fr<\/span><\/a><\/p>\n\n]]>\t\t<\/p>\n<!-- AddThis Advanced Settings generic via filter on the_content --><!-- AddThis Share Buttons generic via filter on the_content -->","protected":false},"excerpt":{"rendered":"<a href=\"https:\/\/blog.actn.fr\/?p=4788\"><img loading=\"lazy\" decoding=\"async\" width=\"150\" height=\"150\" src=\"https:\/\/blog.actn.fr\/wp-content\/plugins\/thumbnail-for-excerpts\/tfe_no_thumb.png\" class=\"alignleft wp-post-image tfe\" alt=\"\" title=\"\" \/><\/a><p>\t\t\t\t<![CDATA[]]>\t\t<!-- AddThis Advanced Settings generic via filter on get_the_excerpt --><!-- AddThis Share Buttons generic via filter on get_the_excerpt --><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rop_custom_images_group":[],"rop_custom_messages_group":[],"rop_publish_now":"initial","rop_publish_now_accounts":[],"rop_publish_now_history":[],"rop_publish_now_status":"pending","_price":"","_stock":"","_tribe_ticket_header":"","_tribe_default_ticket_provider":"","_tribe_ticket_capacity":"0","_ticket_start_date":"","_ticket_end_date":"","_tribe_ticket_show_description":"","_tribe_ticket_show_not_going":false,"_tribe_ticket_use_global_stock":"","_tribe_ticket_global_stock_level":"","_global_stock_mode":"","_global_stock_cap":"","_tribe_rsvp_for_event":"","_tribe_ticket_going_count":"","_tribe_ticket_not_going_count":"","_tribe_tickets_list":"[]","_tribe_ticket_has_attendee_info_fields":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[22,49],"tags":[169,322,782,1054,1073,1422],"class_list":["post-4788","post","type-post","status-publish","format-standard","hentry","category-produit","category-zyxel-marques","tag-attaque","tag-cpe","tag-modem","tag-routeur","tag-sav","tag-zyxel"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/blog.actn.fr\/index.php?rest_route=\/wp\/v2\/posts\/4788","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.actn.fr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.actn.fr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.actn.fr\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.actn.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4788"}],"version-history":[{"count":0,"href":"https:\/\/blog.actn.fr\/index.php?rest_route=\/wp\/v2\/posts\/4788\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.actn.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4788"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.actn.fr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4788"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.actn.fr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4788"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}