Before we set up the Open VPN client let’s first replace the router’s firmware with the awesome “Asuswrt-Merlin” version.
The files don't explain Surfside in any detail, or exactly how the Tomato exploit works, though the documentation hints that it may abuse a protocol called UPNP that security researchers have long warned represents a security liability.
It's not clear if the vulnerabilities that the exploits attack still exist in devices, or if the manufacturers have fixed them, given that Wiki Leaks' Vault 7 files appear to date to early 2016 at the latest.
Tomato appears to target vulnerabilities in at least two routers sold by D-Link and Linksys, and is designed to steal those devices' administrative passwords.
The files also note that at least two other routers sold by Linksys could be targeted with Tomato after a few more "manweeks" of development.
But the details of those hacking tools should, if nothing else, serve as a reminder to patch your own home router, as frustrating a process as that may be.
Hacker House's Hickey says that if users stay vigilant in keeping their router updated, there's no direct evidence in the CIA leak that their router would be vulnerable to the agency's spying.With those credentials, a CIA hacker can then install their own custom firmware, which it calls Flytrap, on a victim's router.That malicious firmware can monitor the target's browsing, strip the SSL encryption from web links they click, and even inject other exploits into their traffic, designed to offer access directly to the target's PC or phone.sitting in the corner of your home accumulating dust and unpatched security flaws, provides an attractive target for hackers.Including, according to a new Wiki Leaks release, the CIA.To download the latest Asuswrt-Merlin firmware and instructions click here.