Skip to main content
  1. Home
  2. Computing
  3. News

It may be time to turn off your router: Netgear confirms security vulnerability

By

Netgear Nighthawk R7000
Image used with permission by copyright holder
A serious security vulnerability affecting a number of Netgear brand routers surfaced Friday, and it reportedly could allow hackers to seize control of your home or office network and potentially intercept your sensitive data. The vulnerability was confirmed by CERT, a federally funded service that coordinates the response to serious software vulnerabilities, reports Ars Technica.

Netgear later confirmed the vulnerability was present in its R8000, R7000, and R6400 routers, but has not yet confirmed whether or not the R7000P, R7500, R7800, R8500, or R9000 models are also affected. According to the CERT report, users of any of the aforementioned routers should be cautious and should probably stop using the devices until a patch has been released.

Recommended Videos

The vulnerability is particularly insidious because of how simple it is to execute. According to Ars, the only thing you have to do as a user is to click on a malicious link, which can be easily disguised as something innocuous. The link then serves a set of instructions to your router, which will run the commands as a root user, allowing the malicious instructions to subvert your router’s security.

Please enable Javascript to view this content

Even if your router’s remote management is disabled, or is otherwise insulated from the internet, the commands will still be run by vulnerable routers, giving malicious third parties access to your local network and all the traffic that passes through it. Ars originally reported a temporary workaround that would protect you from the exploit, and the vulnerability was so severe that the best bet was to just switch it off and keep an eye on the Netgear security advisories for this particular exploit.

Related

Fortunately, Netgear has now responded with a firmware update for the affected routers, either a production update or a beta update. It’s highly recommended that you click on your Netgear router from the list below to download the new firmware:

Netgear recommends in the strongest terms that you update your router. Download and install the beta software now, and then make sure to update to the production firmware when it’s available. Keep an eye on the Security Advisory page for vulnerability 582384 to see if any other Netgear routers are added to the list or if further updates are provided for the known vulnerable devices.

Updated on 12-19-2016 by Mark Coppock: Add download links for production and beta firmware for the affected Netgear routers.

Editors’ Recommendations

Topics
Jayce Wagner
Jayce Wagner
Former Digital Trends Contributor
A staff writer for the Computing section, Jayce covers a little bit of everything -- hardware, gaming, and occasionally VR.
Intel’s promised Arrow Lake autopsy details up to 30% loss in performance
The Core Ultra 9 285K socketed into a motherboard.

Intel's Arrow Lake CPUs didn't make it on our list of the best processors when they released earlier this year. As you can read in our Core Ultra 9 285K review, Intel's latest desktop offering struggled to keep pace with last-gen options, particularly in games, and showed strange behavior in apps like Premiere Pro. Now, Intel says it has fixed the issues with its Arrow Lake range, which accounted for up to a 30% loss in real-world performance compared to Intel's in-house testing.

The company identified five issues with the performance of Arrow Lake, four of which are resolved now. The latest BIOS and Windows Updates (more details on those later in this story) will restore Arrow Lake processors to their expected level of performance, according to Intel, while a new firmware will offer additional performance improvements. That firmware is expected to release in January, pushing beyond the baseline level of performance Intel expected out of Arrow Lake.

Read more
You can get this 40-inch LG UltraWide 5K monitor at $560 off if you hurry
A woman using the LG UltraWide 40WP95C-W 5K monitor.

If you need a screen to go with the upgrade that you made with desktop computer deals, and you're willing to spend for a top-of-the-line display, then you may want to set your sights on the LG 40WP95C-W UltraWide curved 5K monitor. From its original price of $1,800, you can get it for $1,240 from Walmart for huge savings of $560, or for $1,275 from Amazon for a $525 discount. You should complete your purchase quickly if you're interested though, as there's no telling when the offers for this monitor will expire.

Why you should buy the LG 40WP95C-W UltraWide curved 5K monitor
5K monitors are highly recommended for serious creative professionals, such as graphic designers and filmmakers, for their extremely sharp details and precise colors, and the LG 40WP95C-W UltraWide curved 5K monitor is an excellent choice. We've tagged it as the best ultrawide 5K monitor in our roundup of the best 5K monitors, with its huge 40-inch curved screen featuring 5120 x 2160 resolution, 98% coverage of the DCI-P3 spectrum, and support for HDR10 providing striking visuals that you won't enjoy from most of the other options in the market.

Read more
Generative-AI-powered video editing is coming to Instagram
Instagram on iPhone against a colorful background.

Editing your Instagram videos will soon be as simple as typing out a text prompt, thanks to a new generative AI tool the company hopes to release in 2025, CEO Adam Mosseri announced Thursday.

The upcoming tool, which leverages Meta's Movie Gen model, will enable users to "change nearly any aspect of your videos," Mosseri said during his preview demonstration. Those changes range from subtle modifications, like adding a gold chain to his existing outfit or a hippo in the background, to wholesale alterations including swapping his wardrobe or giving himself a felt, Muppet-like appearance.

Read more