Home routers full of vulnerabilities and hard-coded passwords
The security of routers for end users leaves something to be desired. The devices are full of known vulnerabilities, often use hard-coded passwords and do not receive security updates for a long time, according to research by the Fraunhofer Institute for Communication, Information Processing and Ergonomics FKIE. 127 routers from seven major suppliers were investigated for the study. Each router was found to have multiple vulnerabilities. 46 routers had not received a security update in over a year. There were hundreds of known vulnerabilities in many routers, and even when routers were updated, many of these known vulnerabilities were not resolved. It also turns out that router manufacturers rarely use techniques to prevent or complicate exploitation of vulnerabilities, and a significant proportion of them use hard-coded passwords.