A vulnerability has been discovered in the popular line of Arris (formerly Motorola) SURFboard cable modems. The exploit allows remote attackers to reset the modems, knocking victims offline for up to 30 minutes — it’s a denial of service attack, not one that exposes personal information. The problem could be fixed with a firmware update, but unfortunately, there’s no mechanism that enables users to update their cable modems. Updates must be pushed out by Internet service providers, many of whom update only leased modems, not those owned by customers. If you have one of these modems, talk to your ISP about an update.