|Router Security||Website Change Log||
Website by |
June 21, 2018: Minor update to the section on buying the Pepwave Surf SOHO on its page. Minor update to my recommendation for it on the home page.
June 20, 2018: Added story about D-Link DSL gateways being hacked by the Satori botnet to the Router News page and the Bugs page. Added two new TCP ports to the Tester page because they are used by the latest update to the Satori botnet. Added link to emulator for Turris routers to the Resources page.
June 19, 2018: Minor updates to the Other Gripers page, Bugs page and the Resources page.
June 16, 2018: Added some known modem flaws to the Modems page. Added an eero article to the Mesh Routers page.
June 15, 2018: Added a Router News story about a hacked MikroTik router serving as Command and Control. Also added survey results from Rapid7 showing 453,000 routers with an open Telnet port.
June 14, 2018: Updated the What Can Go Wrong page to include a couple tricks from the VPNFilter malware.
June 11, 2018: Added Recon Sentinel to the list of security devices that be added to a network on the Resources page
June 9, 2018: Updated the beginning of the Surf SOHO Initial Configuration page.
June 8, 2018: Added lots of Cisco bugs to the Bugs page. Coverage of VPNFilter on the news page has been updated a few times the last few days. Added the Netgear R6400 to the list of self-updating routers on the Resources page and the Self Updating Firmware page.
June 2, 2018: Update VPNFilter coverage on the Router News page. Added a test of port 2000 to the Test Your Router page, for VPNFilter which uses it to attack Mikrotik routers. Updated the Firmware Updates page to add the issue of re-installing the same firmware on top of itself - thanks to VPNFilter.
May 30, 2018: Better late than never, added coverage of VPNFilter router malware to the News page.
May 29, 2018: Updated the What Can Go Wrong page to add that a router can be permanently disabled by malware, as seen with VPNFilter. More funny Wi-Fi network names added the to the SSID page.
May 28, 2018: Updated the Pepwave Surf SOHO to note that it was resistant to the VPNFilter malware.
May 27, 2018: Updated the avoiding ISP hardware page to mention how Verizon used WEP years after it was know insecure and the FTC went after them in 2014 (and did nothing in the end).
May 26, 2018: Added two more reasons for Comcast customers not use their equipment to the avoiding ISP hardware page. Also added Comcast leaking customer info to the bugs page.
May 24, 2018: Added D-Link router bugs found by Kaspersky to Bugs page
May 22, 2018: Added to the bugs page that British ISP Talk Talk routers are vulnerable to WPS pin code attacks
May 21, 2018: Added flaw in DrayTek routers to both the bugs page and news page. Added WICKED botnet to the news page and updated the Test Your Router page with tests for ports 8443 and 8080 that it attacks.
May 18, 2018: New section on the Resources page for Supposedly Secure routers, those marketed based on their security features
May 17, 2018: Another set of bugs in Cisco software including three critical ones, added to the Bugs page
May 15, 2018: Added article by Imperva to Router News page about UPnP being abused in a new way
May 14, 2018: New article on router security for train operators add to the Other Router Security Advice page. New bugs in Sierra Wireless routers added to the bugs page.
May 12, 2018: Added the suggestion to periodically reboot a router as a way of removing malware to the home page.
May 11, 2018: Updated the Router News and Router Bugs pages. Updated the Resources page to add F-Secure SENSE being offered to router vendors to integrate into their routers.
May 10, 2018: Redid the opening section of the Introduction to Routers page.
May 8, 2018: There is no end to bad articles about router security. Added another to the Other Router Security Advice page. Also updated the firmware update advice on the home page.
May 7, 2018: Not wanting to promote bad articles about router security, the Other Router Security Advice page no longer links to the worst articles, just lists the URL in plain text instead.
May 2, 2018: Added a new bug report that a million routers are vulnerable to two different flaws. Also a new article on hacking MikroTik routers added t o the bugs page.
April 30: Added a router in the news story, added a VLAN in the news story to the VLAN page and added another griper to the Other Gripers page. Added an article about being victimized by malicious DNS servers to the What can go wrong page.
April 29: Updated Mesh router page with more details on the downside of cloud based management and a link to an article about evaluating mesh router systems. Added a networking quiz at the bottom of the VLAN page.
April 26: Apple finally came clean and admitted they don't make routers any more. Added to news page. Added two TP-Link bugs to the Bugs page, one from this month, the other from Oct. 2017.
April 25: Added new flaw with ZTE routers used by British ISP Hyperoptic to the Bugs page. Added changing LAN side IP address of the router to the home page. Added more funny SSIDs to the SSID page.
April 24: Added info about a Wi-Fi slowdown bug to the Surf SOHO page
April 23: Updated news page story on UPnProxy, yet again
April 22: Updated news page story on UPnProxy
April 21: Added note about stolen Peplink routers to the Surf SOHO page. Added note about registering a new Peplink router with InControl2 to the setup page for the Surf SOHO. Added a new potential downside to the Surf SOHO page that involves Wi-Fi speed. Added TP-Link Guest Wifi networks to the VLAN page.
April 18: Moved some coverage of router exploitations from the Bugs page to the Routers In The News page. In the page on initial configuration of the Surf SOHO, I added a paragraph about connecting it to an existing router/gateway.
April 16: Updated the What Can Go Wrong page and added two stories about router hacking to the Routers In The News page
April 15: Updated the SSID page and added a news story about the Boston Red Sox. Also updated the VLAN page with more on VLANs that allow the fish to see each other.
April 13: Minor changes to the home page and a new Routers in the news story from The Register
April 12: Added a Router News story about a Chinese city where shops are forced to use government approved routers. Added Nirsoft DNS Query Sniffer as a tester for DNS leaks when using a VPN.
April 11: New web page devoted to Routers in the News. Huge clump of Cisco bugs and attacks on Cisco devices added to the Bugs page. Added TCP port 2000 to the Tester page. And, due to these Cisco bugs, added TCP port 4786 and UDP port 18999 to the Tester page.
April 10: Added the GL.iNet GL-AR750 as a VPN client router on the Resource page
April 6: Added router security gripes by Kirill Shipulin of Positive Technologies to the Other Gripers page
April 2: Modified the Surf SOHO page to note that both OpenVPN client and server are coming to Peplink routers. Also added that the router can easily block all domains that end with "cm" and noted the problems it sometimes has connecting to Arris cable modems.
March 29: Added ip.voidsec.com as a WebRTC tester to the Test Your Router page
March 26: Improved the first two paragraphs of the Test Your Router page
March 24: On the Resources page, brought the info on InvizBox up to date
March 21: Added Vilfo router security issues to the bugs page. Also added a Symantec report about UPnP flaws still being abused by bad guys all these years later. Updated the introduction to routers page with a new introduction.
March 20: Add new Vilfo VPN client router to the Resources page
March 18: Updated the WPS page to include a push button attack from the kid next door.
March 17: Changed text on the home page in a number of areas. Added warning about buying used routers. Added a US Government report to the What can go wrong page.
March 16: The bugs page was getting too big, so bugs from 2016 have been moved to their own page.
March 15: There seems to be a rash of DNS hijacking of Asus routers. Added to bugs page.
March 10: Modified the Surf SOHO page and the page on initially configuring it, to clear up confusion about uBlock origin and disabling Wi-Fi.
March 9: Added spyware operation that abused MikroTik routers to the bugs page. Minor additions to the Surf SOHO page. Also updated the Other Gripers page with a couple new quotes.
Feb 26: Updated the Downsides of the Surf SOHO with screen shots of Bandwidth Control. Also updated the Resources page to note that Gryphon routers just started shipping.
Feb 25: Added Avira SafeThings to the Resources page in the Coming Soon, Maybe section
Feb 24: Revised the last section of the Pepwave Surf SOHO page, the one about stepping up to higher end Peplink routers.
Feb 23: Revised the intro to the VLAN page (yet again) and the new Shodan page. Intros are hard.
Feb 21: Added a new Shodan Query my Router page
Feb 20: Added two screen shots and made some minor text changes to the Surf SOHO Initial Configuration page.
Feb 19: Revised the intro to the VLAN page
Feb 18: Re-wrote the Ethernet Port section of the VLAN page.
Feb 16: Another bug - Dasan refuses to fix its buggy router
Feb 14: Added a minor Asus router bug from the end of January
Feb 11: Added Netgear router bugs to the bugs page.
Feb 9: Major update to the Consumer Routers page. Also, a major revamp of the home page.
Feb 8: The experience using Google Wifi keeps getting worse.
Feb 6: More proof that routers include old open source components with know security flaws was added to both the bugs and consumer router pages. Also added an article to the Other Security Advice page. At the bottom of the VLAN page, linked to a similar scheme done with Ubiquiti hardware.
Jan 27: A total re-write of the IP Addresses page
Jan 23: Added two bugs to the bugs page and tests of UDP port 9999 for Asus routers to the Test Your Router page.
Jan 22: A number of updates to the Other Router Security Advice page
Jan 14: Added a new section to the Resources page for Add-on Security via Router Firmware
Jan 13: Added article about defaced MikroTik and Ubiquiti Routers to the bugs page.
Jan 4: Updated the Other Router Security Advice page with links to two good articles written yesterday. Updated the VLAN page with a paragraph on Sonos speaker isolation and a Total Reverse topic.
Jan 2: Added an explanation of Access vs. Trunk Ethernet ports to the VLAN page.
Jan 1: Created a new Other Router Security Advice page. This used to be a section on the Resources page.
Dec 31: Added note to the About page that the site just had its 2 millionth page view. Go figure.
Dec 30: Yet another update to the introductory section of the VLAN page.
Dec 26: Added bug in the GoAhead web server to the Bugs page.
Dec 23: Big update to the introductory section on the new VLAN page.
Dec 19: Assorted minor updates to the new VLAN page.
Dec 15: New page devoted to VLANs. Moved VLAN discussion from the Surf SOHO page and expanded it.
Dec 12: Updated the WPS page with a Netgear KB item on defending against WPS.
Dec 6: Added this to the bugs page: A botnet spreads by attacking un-named flaws in Huawei Home Gateways. Also updated the Test Your Router with tests for the TCP ports (37215 and 52869) used by Satori botnet that abuses Huawei routers.
Dec 3: Added a non security section to the mesh routers page.
Dec 2: Added a full list of recent Netgear patches to the bugs page.
Nov 29: Added to the bugs page, reports of a new botnet attacking ZyXEL routers
Nov 25: Completely redid the Firewall topic (item 10) on the Security Checklist page.
Nov 24: Revised the Port Scanning section of the Setup a New Router page and added a new Open Wi-Fi Network Testing section to it.
Nov 21: Added a few brief notes about the TP-LINK Deco M5 to the Mesh Routers page.
Nov 20: Added a summary of a blog about TP-Link firmware rollouts in Europe to the bugs page.
Nov 17: Added a gripe about AmpliFi to the mesh router page and the firmware self updating page. Also added F-Secure Sense and Fingbox to the firmware self-updating page.
Nov 16: More gripes about the Google Wifi app added to the Google Wifi page. The more I use the app, the less I like it.
Nov 15: Added a new section to the Pepwave Surf SOHO page with details on the three hardware editions of the router.
Nov 13: Added some notes about Asus Lyra to the Mesh Routers page and the WPS page
Nov 8: Site search now uses DuckDuckGo. Previously used Google.
Nov 7: Added a bug from June 2017 with EnGenius routers sharing files on USB attached storage.
Nov 6: Great quote about why routers are not secure was added to the Other Gripers page. "... the real goal is that the dumbest person who opens the box be able to connect to the internet without them paying a tech support person for an hour to help you on the phone"
Nov 4: Added more proof to my argument about avoiding ISP hardware. A presentation at DEF CON 25 (summer 2017) where researchers found 26 bugs in assorted ISP provided devices. Updated the firmware self-updating page with the latest audit of eero and some minor editing changes.
Nov 3: Netgear Orbi does not self-update. My bad. Its been corrected on the Resources page. Also, minor changes to the "Secure Router Configuration in Detail" section on the home page. And new colors for the home page stripes. The orange was just too much.
Nov 1: I spoke about Router Security at the O'Reilly Security Conference today and added a link to a PDF of the slides to the home page.
Oct 28: Added that ESET thinks ISPs are helping install malware to the ISP Routers page.
Oct 27: More Netgear bugs added to the bugs page along with Dnsmasq. Added another griper complaining about the bad state of consumer router security.
Oct 25: Minor revisions to the SSID page.
Oct 24: Another bug and an eero warning on the Mesh Router page.
Oct 23: Added KRACK flaw in WPA2 to bugs page.
Oct 18: Added wired bandwidth testing of the Pepwave Surf SOHO.
Oct 14: Added a section on Guest Networks to the Setup a New Router page.
Oct 13: Added info on warranty and InControl2 to Pepwave Surf SOHO page. Lots of changes to the New Router page.
Oct 12: Updated the nmap commands on the Setup a New Router page.
Oct 9: Added topic of blocking internal-use-only IP address to the And... section of the Pepwave Surf SOHO page. Also, other minor tweaks to the page. Added to the WPS page that AmpliFi only supports push button WPS.
Oct 7: Minor updates to the Surf SOHO page
Oct 6: Updated the Firmware Update history section of the Firmware Updates page to include Synology, Eero and Peplink. Also updated the Security Checklist to add locking out IP addresses after too many failed logon attempts.
Oct 4: Updated the More Horsepower section of the Pepwave Surf SOHO router page and added link to test drive the Peplink web UI.
Oct 3: Lots of minor updates to the Pepwave Surf SOHO page, including screenshots of scheduling SSIDs and DSL/cable optimization.
Oct 1: Minor updates to the Pepwave Surf SOHO page, including purchasing info.
Sept 24: Added link to the Network Port Checker and Scanner Tool from ipfingerprints.com to Test Your Router page
Sept 18: Updated information on the F-Secure Sense router on the Resources page.
Sept 16: Added ArmorVPN to the Coming Soon Maybe section of the Resources page.
Sept 15: Added a clump of 3 D-Link router bugs and a group of 3 Netgear router bugs to the router bugs page. Then too, Netgear routers are being abused via an old bug for credential stuffing. Updated the Test Router page to note that web based DNS server tests may not be reliable after a router has been hacked. The Resource page now links to a router security article by Trend Micro. Minor updates to the What can go wrong page and IP address page.
Sept 14: Updated the intro to the bugs page and added the ability to display ALL bugs on one page
Sept 13: Added a Closest Competition section to the Pepwave Surf SOHO page.
Sept 12: Added some observations (all bad) about the Google Wifi app to the Google Wifi page.
Sept 9: Added three security flaws in ARRIS TG852G gateways from July 2012 to the bugs page. Also added a 2013 router bug. Updated the modem tests on the Test Your Router page. New current bug in D-Link routers added.
Sept 6: Lots of changes to the home page. The short checklist is shorter, the long checklist is longer.
Sept 3: Updated the new router page
Sept 2: Updated the bugs page April 2017 section on the bug in Intel Puma chipsets in some modems that generated a lawsuit against Arris and Netgear. The flaw affects more Intel puma chipsets than first suspected. Also added new flaws in AT&T Arris gateways that were discovered by security firm Nomotion. Updated the router test page to include TCP ports 22 and 49152 which may be open on AT&T provided devices.
Aug 20: Added a Juniper router flaw to the bugs page
Aug 19: New flaw in Cisco routers using SNMP added to bugs page.
Aug 17: Minor update to the firmware self-updating page to add bricked smart locks.
Aug 15: Minor updates to Eero and Google Wifi on the Firmware self-updating page.
Aug 12: Updated the WPS page to note that Ubiquiti AmpliFi now supports WPS and you can not disable it. Bad.
Aug 9: Many minor changes to multiple pages, including the Security Checklist and Pepwave Surf SOHO pages.
Aug 2: Updated Gryphon and Betterspot info on the Resources page. Also added Karma Black to the page as a Coming Soon, Maybe router. Minor updates to home page security cheat sheet.
July 31: Updated eBlocker description in the Resources page.
July 29: The website was made secure. All HTTPS all the time. So long HTTP.
July 15: Updated the Mesh Routers page to add that the Eero app shows a list of recently connected devices.
July 14: Two changes to the Resources page. Added DNSthingy as a consumer router alternative. Added more space between bullet list items.
June 23: Lots of updates to the explanation of how to update the firmware on the Surf SOHO at the bottom of the Firmware Updates page.
June 17: A large revision to the Guest Network section of the Pepwave Surf SOHO router page
June 10: Updated the bugs page with flaws in multiple old WiMAX routers.
June 7: Updated Turris Omnia info on the Resources page.
June 6: Updated the bugs page with details of flaws in Peplink Balance routers running firmware 7.0.0.
June 6: Updated the home page to add that I will be speaking about Router Security at the O'Reilly Security Conference.
June 5: Updated the DNS server section of the Test Your Router page with revised comments and added the ExpressVPN tester.
June 2: Dojo was finally released. Updated the Resources page with the latest info.
May 31: Updated Resources page to note that myopenrouter.com is a great match for open source firmware on Netgear routers.
May 23: Big revision to the Guest Network section of the Pepwave Surf SOHO router page
May 14: Minor improvement to the Pepwave Surf SOHO router page explanation of current bandwidth reports.
May 8: Minor changes to the Tester page. Added my blog about my Google Wifi router updating its firmware to the Google Wifi page and the Resources page. Added info on current bandwidth display to Pepwave Surf SOHO page.
May 5: Added info on the Pepwave Surf SOHO sending emails to notify about errors.
May 4: Added lots of bugs to the bugs page. Also added item 30 the security checklist page, that it may be best to avoid Asus routers with Trend Micro software included as part of the firmware.
April 27: Big update to the WPS page with details on which mesh routers support WPS and which do not. Also, added a bug in cable modems using the Intel Puma 6 chipset to the bugs page. And, the bugs page was getting pretty big, so bugs from 2015 no longer display by default.
April 26: Removed the Routers 4 Dummies page and replaced it with a new Mesh Routers page. Roughly the same topic, but greatly revised content.
April 26: Two updates to the Firmware self-updating page. A note from Eero about how quickly they roll out firmware updates and a claim by Google to have a single web page with their full firmware release history.
April 24: Added a new Site Index page
April 21: More bugs, ten to be exact, in 25 different Linksys routers added to the bugs page
April 11: Added bugs in four different travel routers to the bugs page.
March 30: Lots of updates to the WPS page.
March 29: New page on WPS, Wi-Fi Protected Setup.
March 26: Added point that each VLAN can use different DNS servers to the Surf SOHO page.
March 19: Added two bugs in GLi routers to the bugs page. They have been fixed.
March 18: Three new bugs in D-Link routers added to the bugs page
March 16: Added a Ubiquiti Networks flaw to the bugs page.
March 8: Added a section on UPD Port testers to the Test Your Router page.
Feb 28: Added an article about dealing with a hacked router to the bugs page and the Consumer Routers page. Also updated the Test Your Router page to note that if you see ads on this website, then the router you are connected to has been hacked.
Feb 25: Added a bug in two TP-Link routers to the bugs page.
Feb 24: Added some observations after living with eero to the Firmware Self-Updating page. Nothing good.
Feb 22: Added link to an article about Spectrum/Time Warner Cable/Charter cheating their customers and being sued in New York State to the ISP Routers page.
Feb 21: Added a link to Security Router from Halon Security to the Resources page
Feb 20: Added Flter secure router to the Resources page. When released, it will offer both Tor and a VPN client.
Feb 18: Added two things to the Firmware Self-Updating page: details provided by Google on how their Google Wifi routers self-update and tracking of the eero automatic firmware installation. So far, 11 days and no automatic update to an eero system.
Feb 9: Added two more stats pages. The main menu goes to a new page that offers two types of stats: long term only or both long term and short term. The latter page is new.
Feb 8: Added two more printer related ports (515, 631) to the Test Your Router page.
Feb 7: Added a new page with home grown site stats. Linked to it in the main menu replacing the little populated Reviews page. Approaching one million page views (961,500) since the site went live.
Feb 6: Added a test for TCP port 9100 (used by printers) to the Test Your Router page.
Feb 5: Added a new page on Routers with Self Updating Firmware that details how Linksys compares to my security checklist.
Feb 2: On the resources page, modified the list of Linksys self-updating routers to note that all of their "Smart-Wifi" branded routers can self-update.
Jan 30: Added yet another Netgear router bug to the bugs page
Jan 29: Added another IPv6 tester site to the Test Your Router page: test-ipv6.com from Jason Fesler. Also improved the explanation of UPnP on that page and added a menu to it.
Jan 28: Added two tester sites to the Test Your Router page: ipv6leak.com tests for IP version 6 and dnsleak.com tests for leaking DNS servers
Jan 22: Added two new sections to the New Router page: Port Scanning and Extra Credit.
Jan 19: Added Android malware that attacks TP-Link routers in China to the bugs page.
Jan 18: More router bugs, this time with ZyXel and Billion routers in Thailand. Also added quote from Bruce Schneir on how government regulation is the only solution to router and IoT security to the Other Gripers page.
Jan 14: Added info about FTC lawsuit against D-Link for insecure routers and cameras to the bugs page
Jan 13: Updated the WiFi Encryption page
Jan 6: Assorted updates to the Pepwave Surf SOHO page.
Jan 3: Updated page on Google Wifi/OnHub routers. Added Google custom search of this site. My first crack at this, we'll see how it holds up...