Skip to main content
  1. Home
  2. Computing
  3. News

Asus settles FTC lawsuit over flawed router file security

Justin Pot
By

asus ftc settlement asusgate router
Two years after thousands of Asus router owners were revealed to be so totally and utterly compromised that users’ files were available online to the world to peruse, Asus is settling with the FTC.

Asus is going to “establish and maintain a comprehensive security program subject to independent audits for the next 20 years” as part of the settlement, according to an FTC statement.

Security on Asus routers was so bad in 2014 that hackers felt sorry for the company’s customers, and left messages on thousands of computers warning them about the exploit.

“This is an automated message being sent out to everyone effected,” the message read. “Your Asus router (and your documents) can be accessed by anyone in the world with an Internet connection.”

And that wasn’t the only problem. To list just a few things:

  • Hackers could access and change the router’s configuration page without much effort.
  • Every device had the same login credentials, by default: username “admin” and password “admin,” and little was done to get users to change these.
  • In many cases accessing all files shared on a network was as simple as typing the external IP into a browser. Nothing was encrypted.

The FTC’s statement about this case makes it clear that every company making products accessible over the Internet will be held responsible for securing those products.

“The Internet of Things is growing by leaps and bounds, with millions of consumers connecting smart devices to their home networks,” said Jessica Rich, Director of the FTC’s Bureau of Consumer Protection. “Routers play a key role in securing those home networks, so it’s critical that companies like Asus put reasonable security in place to protect consumers and their personal information.”

The FTC seems to be going out of its way to talk about Internet of Things security lately. In January, it issued a report stating that connected devices should limit how long they store information as a security precaution. Mentioning these concerns again as part of this settlement means the government agency is watching companies closely, and will hold them accountable for any bugs.

Editors' Recommendations

Twitter’s latest features are all about curbing election misinformation

Twitter's new election-specific features shown on a smartphone.

Microsoft’s emoji library goes open source

The design process of emoji.

The most common Microsoft Teams problems, and how to fix them

A close-up of someone using Microsoft Teams on a laptop for a videoconference.

Selling something online? Watch out for this clever new scam

An individual holding a phone and card.

Best Newegg deals for August 2022

Newegg Green Monday sale

Alienware’s new gaming monitors come with a retractable headset stand

An Alienware monitor with a headset holder.

GPU prices may be about to crash to incredible new lows

Graphics card in the Acer Predator Orion 7000.

AMD steals Intel’s spotlight with new Ryzen 7000 release date

AMD Ryzen processor render.

This Dell 2-in-1 laptop is discounted by $250 right now

Dell Inspiron 14 2-in-1 7420 front angled view with keyboard folded under and showing display.

This ultra-thin Alienware gaming laptop is $1,150 off today

Alienware x17 on a white background and at a side angle while displaying a game.

Built for work, this Dell laptop with an RTX 3050 is $1,200 off

The Dell Vostro 7510 sits open with analytics on the display.

Lenovo’s Surface Pro 8 rival is $1,930 off right now (seriously!)

Lenovo ThinkPad X1 Yoga Gen 7 front angled view showing display.

Save $540 on Lenovo Legion 5i Pro gaming laptop with an RTX 3060

The Lenovo Legion 5i Pro sitting at an angle.