Update about the HNAP Protocol

In a previous post, we described the obsolete HNAP protocol, which has security vulnerabilities. A new vulnerability was recently discovered in D-Link routers that support the HNAP protocol. You can read more about it here: http://www.computerworld.com/article/3138023/internet/another-hnap-flaw-in-d-link-routers.html. You can use RouterCheck to determine whether your router supports this protocol.

Join us at DEFCON Toronto

For all of our friends in Toronto, please join us on July 25 at DEFCON Toronto where we’ll present the talk “Won’t Somebody Please Think of the Routers”. This talk will provide an overview of the current state of home networking security as well as some ideas that we believe will improve it. While not specifically […]

Join Us at the LayerOne Security Conference

Join us this weekend at LayerOne, Los Angeles’ premier information security conference, May 28-29, 2016. Sander Smith from Sericon Technology will share a talk entitled “Won’t Somebody Please Think of the Routers”. The talk is based on data that was gathered and lessons learned while building RouterCheck. We’ll discuss strategies for mitigating the “SOHO Router Problem” and look […]

It’s Time to Demand Accountability of Android Apps’ Permissions

Today is Safer Internet Day, so it’s a good time to think about how we can all be safer while online. When talking about online safety, we typically think of being more secure and having our privacy maintained and respected. We have always been concerned by the design of Android’s Permissions system and its limitations. Unfortunately, the original Permissions design […]

Getting Over the Password Hurdle

Getting Over the Password Hurdle

Most hacked routers are attacked because of bad passwords. To celebrate Safer Internet Day on February 9, we bring you this guest blog post from Sticky Password about managing your passwords.  Are passwords a hurdle to you when you’re online? Does your pulse go up at the very thought of having to create and remember another password, or […]

Great Article from The Wall Street Journal

Jennifer Valentino-Devries at The Wall Street Journal just published a great article that details the current state we’re in when it comes to consumer routers. As can be expected, that state is not so positive. The article lists some of the worst router vulnerabilities and hacks from the past few years including: Misfortune Cookie Spam-sending […]