[Note: this article updated February 22, 2007]
Urgent security alert: home routers vulnerable to attack
Security researchers have discovered an extremely serious vulnerability in virtually all brands of home routers that makes them vulnerable to the kind of hacking that can lead to fraud and financial losses by large numbers of persons.
I urge you to change the default password on your home router as soon as possible. Only routers with no password, or the default password, are vulnerable.
Instructions for changing passwords on the most popular routers here:
I am sure that more than 90% of home routers are running full default settings, including administrative password. This is due to their success: routers today are virtually plug-and-go, with no need ever to log in to make changes. Well, this success could lead to their downfall.
Read articles here:
Many of Cisco’s routers are vulnerable to this attack. Story here:
Cisco advisory here: