This is a story from a few days back but it came to mind following a discussion yesterday with a client who questioned “changing their router/modem/firewall” in a report a prepared for them. This is not the whole answer – which included VPN – but is some of it.
SANS Internet Storm Diary are reporting an increase in attacks looking for vulnerable router firmware.
Searching for Exposed ASUS Routers Vulnerable to CVE-2021-20090 (sans.edu)
This is a fringe story for most businesses, unless you have the particular vulnerable router, but what it does highlight is that all businesses connected to the internet are depending on their router/firewall, that faces the internet, for their defence against everything that is out there on the web.
So don’t cheap out on the router/modem you are using. Change out the one that came “free” with your internet connection for a device with management and better security – and one where the firmware can be updated if it is found to be vulnerable.
Clive Catton MSc (Cyber Security) – by-line and other articles