Skip to main content

Some older D-Link routers are vulnerable to attack

A Wi-Fi router with an ethernet cable plugged in.
Getty Images

A few legacy D-Link routers can be vulnerable to Remote Code Execution (RCE) attacks since the company refuses to send any updates to patch them up, claiming they have reached end-of-life, as recently posted on its announcement page.

The vulnerability is a serious issue since it allows hackers to take control from anywhere in the world and use a stack buffer overflow. This attack sends more data than the buffer size can handle, potentially corrupting critical information like the return address. Thus, hackers can take control of your PC. However, the company did not detail how the threat works, possibly not informing the hackers too much about the issue.

Recommended Videos

The lack of a fix puts users at risk since they are exposed to malware, data theft, spyware installation, DoS attacks, and more. The routers that are at risk include the following:

  • DSR-150
  • DSR-150N
  • DSR-250
  • DSR-250N
  • DSR-500N
  • DSR-1000N

The company’s only solution for those affected is to get a new router, and if that’s what you’re going to do, you may as well buy one of the best routers. Unfortunately, though, four of the listed routers were discontinued this year, which is bad news considering D-Link said, “If a product has reached End of Support (“EOS”) / End of Life (“EOL”), there is normally no further extended support or development for it.”

The 20% discount D-Link offers on new routers is a nice gesture, but the report says many of the listed routers are open to third-party firmware. That’s not a great solution since it voids the warranty.

But let’s face it: when a device becomes obsolete, it makes sense that the company wants to forget about it and concentrate on the new models.

Judy Sanhz
Judy Sanhz is a Digital Trends computing writer covering all computing news. Loves all operating systems and devices.
This little retro gaming monitor is seriously adorable
JapanNext gaming monitor on a desk.

If you like themed products and interesting designs, this new retro-style monitor from Japannext (JN-V236G180F-RETRO) has everything you could want. Spotted by Tom's Hardware, it aims to blend nostalgia with modern technology to make a fun product complete with the perfect gimmick -- you can watch or play anything you want in monochrome.

In terms of specs, it hardly qualifies as of the best gaming monitors, but that isn't really a deal breaker since the price is just 20,000 yen (around $200). It's a 23.6-inch panel with a 16:9 aspect ratio, 1080p resolution, and 180Hz refresh rate. It has a 1ms response time, an sRGB gamut of 90%, and a DCI-P3 coverage of 80%, along with 300 nits of brightness.

Read more
One of ChatGPT’s latest features comes to the free tier
ChatGPT's Canvas screen

In October, OpenAI debuted its Canvas feature, a collaborative interface that visually previews the AI response to the user's writing or coding request. However, it was only made available as a beta feature for Plus and Teams subscribers. On Tuesday, the company announced that it is bringing Canvas to all users, even at the free tier.

While one could easily mistake Canvas for a blatant knockoff of Anthropic's Artifacts feature, OpenAI is also incorporating a swath of new capabilities into Canvas. For one, Canvas is now integrated directly into the GPT-4o model so that it runs natively within ChatGPT, eliminating the need to select it specifically from the model-picking list.

Read more
This cybersecurity disaster made Google’s top 10 searches of 2024
The blue screen of death in Windows.

Google recently released its Year in Search 2024, with a wide range of different topics reaching the top 10. Among major events like the Olympics and the U.S. presidential election is one name you may have forgotten about, but will remember for the chaos it caused. I'm talking, of course, about CrowdStrike, the cybersecurity firm founded in 2011 in Austin, Texas — the same one that was (at least partially) responsible for the largest IT outage ever.

So, what did CrowdStrike do exactly to earn its spot on the list? In a nutshell, it's responsible for the faulty code that meddled with core functions on the affected Windows computers. The error displayed messages on users' PCs saying: "Your PC ran into a problem and needs to restart." The result was downed PCs across the country, affecting a wide range of industries, but most notably, airports. From an IT perspective, this was a nightmare scenario.

Read more