Cybersecurity researchers discovered security defects in WiFi routers made by nine popular manufacturers are vulnerable to attacks.
- Security researchers and editors with the German IT magazine CHIP have discovered vulnerabilities in most popular routers like Asus, AVM, D-Link, Netgear, Edimax, TP-Link, Synology and Linksys.
- According to researchers, outdated software was the most common issue.
- The two devices with the most vulnerabilities were The TP-Link Archer AX6000 with 32 vulnerabilities and the Synology RT-2600ac with 30 flaws.
Cybersecurity researchers discovered security defects in WiFi routers made by nine popular manufacturers are vulnerable to attacks.
The router affected by most of the flaws found by the researchers is the TP-Link Archer AX6000; experts discovered a total of 32 vulnerabilities, followed by Synology RT-2600ac with 30 issues and by Netgear Nighthawk AX12 with 29 bugs.
Experts also found tens of vulnerabilities in Netgear Nighthawk AX12, Asus ROG Rapture GT-AX11000, Linksys Velop MR9600, AVM FritzBox 7530 AX, Edimax BR-6473AX and AVM FritzBox 7590 AX.
The researchers analysed the network devices using loT Inspector’s security platform, which checked for thousands of CVEs and security flaws.
The experts discovered the most common issues were older versions of the Linux kernel in the firmware, the presence of hardcoded credentials, outdated multimedia and VPN functions, the use of insecure communication protocols, and weak default passwords.
The report also pointed out that vendors using simple default passwords on routers made them easy to guess. Some users are known to employ routers with their default credentials, making them easy targets for attackers.
Researchers reported that in some cases, SOHO routers also use unencrypted connections in insecure certificates. Over-reliance on older versions of BusyBox, the usage of weak default passwords like “admin”, and the presence of hard-coded credentials in plain text form was also responsible.
Researchers indicated that not all the identified issues are exploitable; they also found false positives.
As soon as the researchers shared their findings with the manufacturers, all vendors responded quickly by fixing affected models.
Experts recommend users update the firmware of their WiFi routers to the latest fixes.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?