Router now almost the most important device in the house, which contains all other gadgets in a single network and passing through all user data. Therefore, the safety of such gadgets are extremely important. However, the results of the research of the German Institute of telecommunications Fraunhofer show that many popular models are hundreds of known vulnerabilities and does not receive updates.
For the experiment were selected 127 models of home routers from seven well-known brands: ASUS, Netgear, D-Link, Linksys, TP-Link, Zyxel, and AVM. In the course of the study were analyzed the most recent firmware for routers for known vulnerabilities. The results were, to put it mildly, disappointing – among all devices may be none, which would be fully safe.
Of the 127 selected models 46 has not received any security updates over the past year, and 22 have not received any update for the last two years. One model and not updated 1969 days (more than five years). Relatively best was ASUS, AVM and Netgear, whose devices have been updated in the last year and a half, but in the case of D-Link, Linksys, TP-Link and Zyxel, the situation was worse.
The researchers note that about 90% of the routers run on Linux, but many manufacturers simply haven’t updated the OS. Moreover, most companies are still using kernel 2.6 or even earlier, which was last updated in February 2011. As a result, in firmware many vulnerabilities.
It turned out that 50 models of routers the username and password to login the default built into the device, and 16 &8203;&8203;of routers are well known or easily hacking profiles. All of the companies ASUS is recognized as the only one that does not store the credentials into their firmware.
The best security were the routers of the AVM company. After the researchers put up in ranking ASUS and Netgear that on a number of criteria proved to be better than D-Link, Linksys, TP-Link and Zyxel.