Netgear Firmware Latest To Have Huge Flaw/Backdoor Security Issue

Here we are again, telling you about a popular router with vulnerabilities that have been recently exposed. Seems like we meet here once a month to do this. Whaddya say to meeting here in ten years just to see how much routers have changed.

But we’re being flip, and network security is actually quite a big deal to us.

Chalk it up to exhaustion; we don’t like hearing about people’s information and identities being threatened any more than you do. And it was literally less than a week ago that we were reporting on a series of D-Link routers that had been found to have serious backdoor vulnerabilities. A couple months before that, it was Asus routers and Linksys routers (and D-Link routers once again), all hitting the market with firmware that’s riddled with holes. We’re tired of it and we want to help. So let’s get into it…

The Netgear WNDR3700 N600

The Netgear WNDR3700 N600 DD-WRT FlashRouter

The Netgear WNDR3700 N600 DD-WRT FlashRouter

PC World is reporting that the latest router to be compromised is the Netgear WNDR3700 N600. Apparently, in attempting to update the router’s hardware, Netgear has inadvertently opened up a door that allows attackers to get around authentication on the router’s Web-based interface.

According to the online magazine, “That opens the door to many attack possibilities. For example, an attacker could configure the router to use a malicious DNS (Domain Name System) server, which would allow the attacker to redirect users to malicious websites or set up port forwarding rules to expose internal network services to the Internet.”

Interestingly enough, this is a vulnerability that Netgear has successfully dealt with before; as recently as July, actually, when the WNDR4700 firmware version was released without this problem. But apparently, the company didn’t bother to check if the same problem applied to their other routers.

Zachary Cutlip of Tactical Network Solutions, who exposed the Netgear WNDR3700 v4 firmware flaw on his blog offered this advice to users of the Netgear N600 (and users of routers in general): “Do not turn on remote administration ever, for any device. That’s the number one attack surface, and it’s the one we usually find bugs in.”

Other router models reportedly affected include the popular Netgear WNDR4700 and WNDR3800 model as well.

The Importance of Better Firmware

Now, when we heard that the Netgear N600 was shown to have some serious vulnerabilities in its current firmware, our first thought was, “Hey, we sell that router!” And you’d think that a report about a router on our line having issues would seem to send our office into a panic, but that’s not the case here at FlashRouters, because we pre-flash every Netgear WNDR3700 N600  with DD-WRT firmware.

(Oh and did we mention that The Hacker News subsequently reported that the security analyst who discovered the D-Link issue a few weeks back also found a huge backdoor in discount Chinese router provider Tenda. Skimping on your router may open your entire network and personal data right up to anyone or any government that might want to utilize networked devices for nefarious purposed)

DD-WRT Firmware = Security & Network Reliability Solution

Since our version of the router replaces the issue-laden, buggy under-performing firmware it is not vulnerable to these continual issues that are exposed by some security expert with time on its hands. Open-source firmware projects like DD-WRT has not fallen victim to these continual issues because of the care that is taken by users to develop and test it for their own privacy and security. Techies are making and sharing something that they ACTUALLY want to use. DD-WRT is for those who take advanced features, security, privacy and router performance seriously.

We’ve gone over the benefits of reliable, versatile replacement firmwares time and time again, but it’s worth repeating: DD-WRT and Tomato firmware aren’t luxury upgrades: in this day and age of identity theft, hacking, and government snooping, owning a router without upgraded, impenetrable firmware with advanced security options is a necessity. DD-WRT and Tomato routers keep your sensitive information safe, especially if you take advantage of the ways they allow you to utilize VPNs.

And beyond that, DD-WRT and Tomato routers just allow for better networking. If you’re constantly dealing with connection interruptions or freezes in the middle of downloads or stalls in your streaming media experience, you should know that’s something you don’t need to put up with. You can extend your wireless range or control how your bandwidth is allocated. You can make your router work the way you want it to work with the help of DD-WRT or Tomato.

With the glut of news stories about vulnerable routers, it can seem like wanting complete network security is a foolhardy dream; but you should want that; moreover, you should expect that, and FlashRouters can help you achieve that. Visit our better firmware router store today and find the secure device that suits you best. Heck, you may just go for the Netgear N600, because you found one that is actually safe.

Want more online security, firmware flaw updates (which are being exposed pretty much everyday) and privacy news? Follow us on Twitter (@flashrouters) or like us on Facebook.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.