My mom had forwarded an e-mail to me that
her Rogers IP address has been identified as being "prone" to SSDP (Simple Service Discovery Protocol) attacks.
She's has a Compaq Presario CQ60 laptop running Windows Vista home premium and she shares her internet connection using a D-Link DIR-615 wireless router. Apart from that, she has a Motorola Surfboard modem that Rogers has provided to her.
Based on that e-mail she had forwarded to me - I realized that her router was affected by the SSDP attack because of this cause - not known to her: having UPnP (Universal Plug and Play) enabled on her router in question.
I wonder if you folks have receive these e-mails similar to the aforementioned problem that my mom has found out (although she is not as technical as I am)?
Anyways, some options (one or more) that I came up with may exist for my mom's situation:
- disable UPnP on her D-link router
- disable SSDP discovery service on laptop
- replace the Motorola Surfboard modem in question with a newer modem/gateway
For the first option above, it is among the easiest for me (based on
this link from the e-mail)
As for the second option, having SSDP discover service in Manual would be feasible - but I'm not sure if they will make a difference.
For the third option, from what I had witnessed - her modem isn't experiencing any issues but if she were to replace her modem, then she'll get a modem/wireless gateway that Rogers have marketed/offered/supports (Rogers called these modem/gateway hybrid devices their "Advanced Wi-Fi modem").
Are there any other suggestions that I may had missed, folks?