Pretty much all Wi-Fi routers are vulnerable to attack, study finds

Outdated software was the most common problem, say researchers

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

In a shocking revelation,cybersecurityresearchers have discovered over 200 bugs inWi-Fi routersmade by nine popular manufacturers, suggesting that millions of the most common devices around the world are vulnerable to attacks.

Researchers from IoT Inspector and CHIP examined devices fromAsus, AVM, D-Link,Netgear, Edimax,TP-Link, Synology, and Linksys, and found a total of 226 potential security vulnerabilities.

“The test negatively exceeded all expectations for secure home andsmall business routers. Not all vulnerabilities are equally critical - but at the time of the test, all devices showed significant security vulnerabilities that could make a hacker’s life much easier,” said Florian Lukavsky, CTO of IoT Inspector.

We’re looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won’t take more than 60 seconds of your time, and we’d hugely appreciate if you’d share your experiences with us.

Click here to start the survey in a new window«

The two devices with the most number of vulnerabilities were the The TP-Link Archer AX6000 with 32 vulnerabilities, and theSynology RT-2600acwith 30 vulnerabilities.

Greater accountability

According to the researchers, some of the security issues were detected across multiple devices, generally because of outdated software. They fathom that, since integrating a new kernel into the firmware is a costly affair, all of the tested routers were running dated versions of theLinuxkernel.

Similarly, additional services, such as multimedia streaming orVPN, were usually found to be powered by outdated software.

When contacted by the researchers, all of the manufacturers quickly responded by releasing firmware patches to resolve the issues.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

The researchers also used the opportunity to point out that the coalition agreement of the new German government seeks to hold manufacturers accountable for vulnerabilities in their products.

“This increases the pressure on the industry to continuously secure products in order to avoid immense claims for damages,” point out the researchers.

With almost two decades of writing and reporting on Linux, Mayank Sharma would like everyone to think he’sTechRadar Pro’sexpert on the topic. Of course, he’s just as interested in other computing topics, particularly cybersecurity, cloud, containers, and coding.

iStorage Group acquires Kanguru Solutions as it looks to expand security offering

Phishing attacks surge in 2024 as cybercriminals adopt AI tools and multi-channel tactics

Smeg Combi Steam Oven review: a multi-functional countertop oven that looks stunning and cooks well