| Router Security | Website Change Log |
Website by Michael Horowitz |
FEBRUARY 2026
Feb 13: Added a news story about DNS hacking of some routers.
JANUARY 2026
Jan 30: Added AbuseIPDB to the Shodan page
Jan 12: Minor updates to the Shodan page
Jan 11: Many updates to the Shodan page. It really should be called the Are You A Bad Guy page?
Jan 2: Updated both the Test Your Router page and the Shodan page to add a new tester page from Synthient, that checks if your Local Area Network was detected as hosting a device in the Kimwolf botnet. Added a Router News story about the Kimwolf botnet.
DECEMBER 2025
Dec 7: Updated the Secure Routers page with proof that Peplink routers have great security. Updated the Router News page with a story about the possibility of TP-Link routers being banned by the US government.
NOVEMBER 2025
Nov 25: Updated the Bugs page to add that some Tenda routers and buggy and there is no patch. Also that D-Link routers outside the US are buggy and whether there are fixes or not is confusing.
Nov 22: Updated the Router News page with more about hacked Asus routers. Also added the Asus EoL list to the Resources page.
Nov 19: Updated the News page and Bugs page with some of the latest bugs and attacks.
Nov 3: Updated the DNS long explanation with an article about OpenWRT hacking DNS requests of attached devices.
Nov 2: Updated the Modem page, including a new Defensive Computing section and a new modem picture.
OCTOBER 2025
Oct 30: In Router News: assorted departments of the US Government agree that banning TP-Link would be a good thing.
Oct 21: Small updates to the Test Your DNS servers page
Oct 20: Updated the page with suggested DNS providers to note that dns0.eu has shut down
Oct 10: A new botnet puts Router Security in the news.
Oct 9: Re-did the intro section on the Long DNS Explanation page
Oct 6: Updated the Turn Off page with an example of what happens when SNMP is buggy and not turned off.
Oct 5: On the page with suggested DNS providers added an article critical of DNS4EU
Oct 3: On the Bugs page added bugs in DrayTek and TOTOLINK routers
SEPTEMBER 2025
Sept 28: Multiple Cisco bugs added to the Bugs page.
Sept 21: Updated the SSID page
Sept 2: Updated the Peplink B One configuration page with a better explanation of restricting LAN side access to the router.
AUGUST 2025
Aug 14: Minor update to the page on extending the range of a Wi-Fi network
Aug 8: Minor updates to the VLAN page
Aug 6: Added a interesting News story about an EoL router from TP-Link (filed under July).
Aug 5: SonicWall, Netgear and Huawei made the news
JULY 2025
July 31: Updated the Routers in the News page with a new story. On the DNS providers page, added a critique about DNS4EU.
July 28: On the Secure Routers page added another reason not to trust Ubiquiti
July 26: In the page on configuring the Peplink B One router, started a section on the Status tab
JUly 13: Updated the TP-Link Omada page
July 12: Added a new page on a TP-Link Omada Access Point
July 2: In the page on configuring the Peplink B One router, updated the section on DNS.
JUNE 2025
June 22: In the page on configuring the Peplink B One router, updated the section on the Untagged LAN
June 21: In the page on configuring the Peplink B One router, added the section on the Untagged LAN
June 18: Some updates to the page on configuring the Peplink B One router
June 14: Updated the page with Suggested DNS providers. More on Mullvad and a ding for OpenDNS.
June 13: Added DNS4EU as a new DNS provider in the EU on the page with suggested DNS providers.
MAY 2025
May 31: In the Router News page added articles about Asus routers, yet again, getting hacked.
May 28: More updates to the B One router setup page.
May 27: Added a new Wi-Fi section to the B One router setup page.
May 24: Added a new VLAN section to the B One router setup page.
May 13: Continued updating the B One router setup page.
May 12: Lots of changes to the new page on setting up the Peplink B One router. Still not done.
May 6: On the Resources page, started a new section linking to EOL products from some router vendors.
APRIL 2025
April 27: Updated the page on the Peplink B One router with information on copying settings from a Surf SOHO router
April 26: Added a News story about TP-Link routers
April 18: Added a bug to the Bugs page in the cloud system used by Asus routers
April 9: In the page with suggested DNS providers, updated the Quad9 information.
MARCH 2025
March 31: Updated the What Can Go Wrong page with a new section on botnets
March 24: Added a Router News story about DrayTek routers being attacked.
March 14: Added a note about special characters in Wi-Fi passwords to the Wi-Fi passwords page and the SSID page.
March 4: Updated the Bugs page with an article about nine different bugs in many Draytek routers.
FEBRUARY 2025
Feb 26: Removed one of the generic DNS testers from the Test Your DNS page as it no longer exists
Feb 23: Updated the page on Extending Wi-Fi Range with another way to learn the signal strength with Windows 10. On the Router News page added an article about the security of TP-Link routers.
Feb 17: Updated the Router News page with many bugs in big boy networking devices.
Feb 16: Updated the Wi-Fi passwords page to note that WPA3 has defenses against off-line brute force guessing.
Feb 10: On the DNS Providers page, updated the section on dns0.eu. Also added two more critical security flaws in Netgear routers to the Bugs page.
Feb 8: Added a news story about hacked routers being used to find other hackable routers. The long explanation of DNS is now on its own page. I re-worked the assorted DNS pages to, hopefully, make things easier to find. A few DNS related content changes.
Feb 3: Upgrading from a Peplink Surf SOHO to the B one is, again, a major pain the ass. There is no longer a service from 5G Store to convert the settings.
JANUARY 2025
Jan 31: Updated both the Router News and Bugs pages.
Jan 24: Lots of bugs in Security Appliances from Palo Alto Networks
Jan 23: Updated the DNS Providers page with more tests of how well malware is blocked by some DNS providers.
Jan 14: More Fortinet bugs. Yawn.
Jan 5: Added a Palo Alto bug to the Bugs page.
Jan 1: Updated the Shodan page (which really needs a better name) with both additions and subtractions. Also added the new OpenWRT One router to the Resources page.
DECEMBER 2024
Dec 21: Added a March 2024 News story about router security from the Hudson Institute
Dec 20: Added News story: Juniper lets customers use default passwords.
Dec 18: Added News stories about the US Government considering banning TP-Link routers.
Dec 9: Added multiple Asus router bugs to the Bugs page, both from November and December. Also updated the Passwords page.
Dec 6: new Zyxel bugs added to Bugs page.
NOVEMBER 2024
Nov 26: More D-Link routers are buggy and abandoned (added to Bugs page). On the News page added a new type of Wi-Fi attack, Nearby Neighbor.
Nov 22: Minor clarifying update to the Surf SOHO configuration page.
Nov 21: Fortinet has failed to fix their buggy Windows VPN client software.
Nov 17: Added new Palo Alto Networks bugs to the Bugs page.
Nov 14: More buggy End of Life D-Link routers that will not be fixed. On the Bugs page.
Nov 13: Added a News story about ancient routers being hacked by bad guys in China.
Nov 12: In the topic on Extending Wi-Fi Range, added two recommended fast routers from Duckware.
Nov 11: Updated the topic on Extending Wi-Fi Range
Nov 4: Added another Router News story about the bugs in dedicated security network hardware devices.
Nov 3: Added a Router News story about the Chinese using hacked routers in password spraying attacks.
OCTOBER 2024
Oct 29: In the page on extending Wi-Fi range, added more on configuring a Wi-Fi extender
Oct 25: Still another Fortinet bug added to the Bugs page
Oct 13: Added Palo Alto and Fortinet bugs to the Bugs page
Oct 11: Updated the WPA3 topic on the WPA2, WPA3, WPA page. Updated the page on ISP provided routers to note my US-focused opinion. Added D-Link router bugs to the Bugs page. Added 14 DrayTek router bugs to the Bugs page. Updated Ping Reply on the Long List on the home page. Revised the DrayTek section on the Secure Routers page.
Oct 10: On the home page, updated the instructions on removing saved SSIDs in the section with Some Additional Thoughts.
SEPTEMBER 2024
Sept 30: Updated the WPA2 WPA3 page.
Sept 28: Updated the IP Address page.
Sept 27: Added another reason not to buy Ubiquiti devices on the Secure Routers page.
Sept 18: Updated the Peplink B One page with Bluetooth information.
Sept 17: Small updates to the Security Checklist page
Sept 9: Added a SonicWall bug to the Bugs page.
AUGUST 2024
Aug 31: Updated the Test Your DNS page. Multiple changes including the addition of a tester for Control D. Moved the boring DNS stuff off the Tester page to a new page: Still More About DNS.
Aug 27: Added a News story about hacked TP-Link routers from May 2023. Also added a current news story about Cisco walking away from old devices rather than fix a security problem. Also added a News story about fake Cisco hardware from May 2024.
Aug 19: Added a News story about member of US Congress want to investigate TP-Link routers
Aug 18: Added a new section on Software to the page on Wi-Fi performance (aka Extending Wi-Fi Range)
Aug 10: On the Long DNS Explanation page, added a warning that Windows 11 is buggy as hell in this regard.
JULY 2024
July 20: Added a News story about Linksys routers phoning home in clear text with SSIDs and passwords. Also added a Cisco bug to the Bugs page.
July 17: Added a new router bug, one that was hidden from the public by Sonicwall. Updated the Long DNS Explanation, the section on Windows.
July 15: Added the DNS report at dnssy.com to the Test Your DNS page.
July 3: Added a Juniper bug to the Bugs page.
July1: Updated the What Can Go Wrong page to include hacking Windows PCs.
JUNE 2024
June 30: Added a D-Link router bug to the Bugs page. Also added a flood of bugs in many different Asus routers. Also added router security advice from Asus for their routers to the page with Other Security advice.
June 3: Updated the Secure DNS topic on the Security Checklist page
June 1: Added a news story about routers from ISP Windstream being permanently bricked.
MAY 2024
May 31: Added a TP-Link router bug to the Bugs page
May 30: Updated the SSID topic with information on keeping a router out of the Location databases maintained by Apple and Google.
May 21: Added a story to the News page about Wi-Fi routers leaking their location.
APRIL 2024
April 29: Added links to some Peplink Forum postings about their B One router.
April 28: More Cisco hacking on the Router News page.
April 27: On the Bugs page added no details at all about the latest security bugs in a few Asus routers. Not a typo. On the VLAN page, linked to an article by Asus about setting up a VLAN on their routers.
April 26: On the page for configuring the Surf SOHO router, added more outbound firewall rule suggestions.
April 22: Updated the page for the Peplink B One router with real world speeds for the Balance 20x that it is replacing.
April 18: On the Long explanation about DNS, updated the iOS section.
April 17: Added a News story about TP-Link routers being hacked that speaks to a much larger issue about TP-Link.
April 15: On the DNS Providers page, totally re-did the section on Mullvad DNS are their offerings have changed (for the better)
April 12: On the Bugs page, added bugs in Netgear and TP-Link routers
April 10: Updated the Test Your Router page with new ports to test for LG Smart TVs. Also updated the What Can Go Wrong page with more examples of actual router attacks. In the Long Explanation of DNS on the Test Your DNS page, added setup instructions for macOS.
April 7: Updated the page on the Peplink B One router as the model with integrated 5G seems to have just been released.
MARCH 2024
March 31: Updated the topic of OPNsense on the Secure Routers page.
March 29: Updated the Secure Routers page.
March 26: Added a News story about old Asus routers getting hacked.
March 6: Updated the IP address page with new Chrome protections against accessing devices on your LAN.
March 4: Updated the Security Checklist page to add some security features found in AVM FRITZ!Box routers.
FEBRUARY 2024
Feb 29: Minor update to the Peplink B One page.
Feb 28: Added a couple News stories about the Russians hacking Ubiquiti Edge routers
Feb 23: Updated the Peplink B One page to note that 5G Store successfully converted a Surf SOHO config file backup of mine to work on the B One.
Feb 18: Minor update to the IP Address page to explain the 3 questions better.
Feb 16: Updated the What Can Go Wrong page to note that routers in the US were infect by the Chinese and by Russians with the intention of attacking the US.
Feb 10: Updated the Peplink B One router page.
Feb 6: The Peplink B One router is finally in stock somewhere.
Feb 3: Added a news story about the FBI hacking routers infected with the KV Botnet used by Chinese Volt Typhoon state hackers. Also updated the home page about periodically rebooting a router.
JANUARY 2024
Jan 30: It's here - the Peplink B One router has been officially announced so the page for it here has been drastically updated.
Jan 28: Amazon has a listing for the new Peplink B one router (without 5G) but it is not in stock.
Jan 25: Added a link to Peplink Security Advisories on the Resources page.
Jan 23: Updated the page on configuring the Surf SOHO with a heads up about the DPI option.
Jan 20: On the DNS providers page, updated the configuration of NextDNS on iOS.
Jan 18: Added an article to the Other Router Security Advice page.
Jan 16: Added a Who is Peplink? section to the Pepwave Surf SOHO page.
Jan 15: Added a link to the referenced Peplink University video on the Balance One page. Also updated the expected release date.
Jan 14: On the home page added a note about deleting old SSIDs from Wi-Fi devices. Also added a warning about a scam copy of this site.
Jan 10: On the DNS Providers page, added a new section for Government run DNS services.