A new study out by the American Consumer Institute shows that 83 percent of routers in the United States are vulnerable to cyberattacks. The group finds that a majority of those routers have critical security vulnerabilities, primarily due to the lack of firmware updates.
In testing a total of 186 routers from leading manufacturers like Netgear and Linksys, the study found that over 155 were vulnerable to potential cyberattacks. Individually, there were 172 vulnerabilities per router, and 32,003 vulnerabilities in total.
Though a shocking number, the vulnerabilities were all ranked in severity, of low, medium, and high by the National Security Database. Each of these vulnerabilities takes a different set of hacking skills to exploit, with 21 percent being ranked high, 60 percent medium, and 12 percent low.
“High and critical vulnerabilities are more easily exploited, and it could cause more damage than low and medium vulnerabilities. High-risk vulnerabilities require very little knowledge or skill to exploit, but, unlike critical-risk vulnerabilities, they will not entirely compromise the system. The potential damage remains a concern, as exploited high-risk vulnerabilities can partially damage the system and cause information disclosure,” explains the report.
The entire sample considered, a total of 28 percent of the vulnerabilities were also ranked as high risk. There was also, on average, 12 critical vulnerabilities and 36 high-risk vulnerabilities, across the entire sample.
Unfortunately, the report also finds that the fix for these vulnerabilities belongs in the hands of consumers and router vendors. Manufactures provide firmware updates to address these critical issues, but they are not always easy to install. Since the FBI warned of previous Russian intrusion in Wi-Fi routers earlier this year, there are serious implications here for business and consumers.
The world is every connected, and this poses risk for Internet of Things devices, network-attached storage devices, and anything that is connected to the internet. Even if it seems like a daunting task, always stay on top of your security updates, and check your router manufacturer website for more information on how to update your firmware.
If you’re concerned if your router is impacted, you can check out the final page of the study, which has a complete list of impacted models.
- Despite serious security flaws, D-Link will (again) not patch some routers
- Is your PC safe? Foreshadow is the security flaw Intel should have predicted
- Give your home an upgrade with the Wayfair Labor Day sale
- 20 Samsung SmartThings Hub vulnerabilities jeopardized smart homes
- Security flaw on modern PCs could leave your encrypted data exposed