Your IT Consultant

Information Technology Blog
by John W. Simek, Vice President of Sensei Enterprises, Inc.

Over Twenty Linksys Wi-Fi Routers Have Security Holes

April 26, 2017

Linksys makes consumer grade routers, but many businesses also use them to connect to the corporate network. That may not be a problem in most cases, but a security consultant discovered 10 total bugs in more than 20 Linksys "Smart" Wi-Fi routers. Six of the vulnerabilities can be exploited by an unauthenticated attacker. The vulnerable routers include:

  • EA2700
  • EA2750
  • EA3500
  • EA4500v3
  • EA6100
  • EA6200
  • EA6300
  • EA6350v2
  • EA6350v3
  • EA6400
  • EA6500
  • EA6700
  • EA6900
  • EA7300
  • EA7400
  • EA7500
  • EA8300
  • EA8500
  • EA9200
  • EA9400
  • EA9500
  • WRT1200AC
  • WRT1900AC
  • WRT1900ACS
  • WRT3200ACM

Until a fix is available, Linksys recommends enabling automatic updates, disabling Wi-Fi guest networks if they're not in use, and changing the default administrator password. Those are all things you should be doing with any device, even those without identified vulnerabilities. I would even recommend disabling the ability to remotely administer the device.

E-mail: Phone: 703.359.0700
Digital Forensics/Information Security/Information Technology
http://www.linkedin.com/in/johnsimek
https://amazon.com/author/johnsimek
https://www.senseient.com