MikroTik

MikroTik

Industry	Information Technology
Founded	1996
Headquarters	Latvia: Riga
Key people	John Tully (CEO) Arnis Riekstiņš (CTO)
Products	routers, firewalls, software (RouterOS)
Revenue	401,597,172 Euro (2023)
Net income	100,052,901 Euro (2023)
Total assets	457,431,259 Euro (2023)
Number of employees	343 (2020)[1]
Website	mikrotik.com

MikroTik (officially SIA "Mikrotīkls") is a Latvian network equipment manufacturer. The company develops and sells wired and wireless network routers, network switches, access points, as well as operating systems and auxiliary software. The company was founded in 1996 with the focus of selling equipment in emerging markets. As of August 2019, the company website reported an estimated 280 employees. In 2021, with a value of EUR 1.24B, Mikrotik was the 3rd largest company in Latvia and the first private company to surpass EUR 1B value in Latvia.^[2]

Two MikroTik branded routers.

Roof-top LTE antenna.

History

MikroTik was founded in 1996 in Riga, Latvia as a PC software company. In 2002, MikroTik began producing their own hardware.^{[3][additional citation(s) needed]} On 23 May 2018, the Cisco Talos Intelligence Group reported that some MikroTik devices were found to be vulnerable to the VPNFilter malware.^[4][5][6] On 3 August 2018, MikroTik routers were found to have been compromised by the Coinhive cryptocurrency malware.^[7]

Mikrotik Chateau 5G. An LTE/5G modem and router.

Product vulnerabilities

• On 23 May 2018, Cisco Talos Intelligence Group reported that some MikroTik devices were found vulnerable to the VPNFilter malware.^[8][9][10]
• MikroTik routers have been compromised by Coinhive cryptocurrency malware.^[11]
• RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.^[12][13][14]

Meris

Beginning in June 2021, a botnet composed of unprotected Mikrotik devices created huge volumes of application-layer traffic using http pipelining, resulting in DDOS. The net was named Mēris (or Meris) by Qrator. Yandex reported attacks beginning August 4, 2021 (over 5 million requests per second) with a massive attack on 5 September 2021 reaching almost 22 million RPS (requests per second). Cloudflare acknowledged an attack at over 17 million RPS in July 2021.^{[citation needed]}

References

1. Mikrotikls SIA Company Profile Riga, Latvia Competitors, Financials & Contacts - Dun & Bradstreet, Dun & Bradstreet
2. ""Mikrotīkls" kā pirmais privātuzņēmums Latvijā pārsniedzis miljarda eiro vērtību". LSM.lv.
3. "MikroTik - About us". MikroTik.
4. "New VPNFilter malware targets at least 500K networking devices worldwide". Talos Threat Source Newsletter. 2018-05-23.
5. Lucero II, Louis (2018-05-27). "F.B.I.'s Urgent Request: Reboot Your Router to Stop Russia-Linked Malware". The New York Times.
6. Godin, Dan (2018-05-23). "Hackers infect 500,000 consumer routers all over the world with malware". Ars Technica. Retrieved 2019-04-21.
7. Nichols, Shaun (2018-08-03). "MikroTik routers grab their pickaxes, descend into the crypto mines". The Register. The Register. Retrieved 2019-04-21.
8. "New VPNFilter malware targets at least 500K networking devices worldwide". Talos Threat Source Newsletter. 2018-05-23.
9. Lucero II, Louis (2018-05-27). "F.B.I.'s Urgent Request: Reboot Your Router to Stop Russia-Linked Malware". The New York Times.
10. Godin, Dan (2018-05-23). "Hackers infect 500,000 consumer routers all over the world with malware". Ars Technica. Retrieved 2019-04-21.
11. Nichols, Shaun (2018-08-03). "MikroTik routers grab their pickaxes, descend into the crypto mines". The Register. The Register. Retrieved 2019-04-21.
12. "CVE-2018-14847 winbox vulnerability". blog.mikrotik.com. Retrieved 2021-05-30.
13. "CVE-2018-14847 winbox vulnerability". blog.mikrotik.com. Retrieved 2021-05-30.
14. "CVE-2018-14847". nvd.nist.gov. Retrieved 2021-05-30.

External links

• Company website (in English)