Sierra Wireless has confirmed reports of the “Mirai” malware infecting AirLink gateways that are using the default ACEmanager password and are reachable from the public internet. One symptom users of the LS300 and RV50 may see is an increase in billable traffic, which may be attributed to the “Mirai Trojan” (malware).
Users should reboot their LS300 or RV50 and change the password to protect the device. Rebooting the modem will clear the “Mirai” malware from memory and changing the password will protect it from becoming infected again.
Use the link below for the full Sierra Wireless technical bulletin which has information about Mirai along with instructions on how to protect the Sierra Wireless gateway.
This information has been added to the LS300 and RV50 pages on our web site.
Brian
Security should be a consideration for all publicly-accessible devices. Here is a recent blog post with tips on securing dataloggers and datalogger communication peripherals:
https://www.campbellsci.com/blog/security-measures-for-internet-connected-dataloggers
Dana