Besides them trying to upsell me a new router, what does this mean?

Besides them trying to upsell me a new router, what does this mean?
from StarvingMartist@sh.itjust.works to cybersecurity@sh.itjust.works on 25 Sep 20:41
https://sh.itjust.works/post/46751764

Is my network actually at any risk? Should I take any steps now that I’m not receiving security updates? This was a really expensive router and I’m going back to school so I’m definitely not going to be in the market for a new one for quite a while. Probably wouldn’t be going back to tplink even if I did.

Thoughts?

#cybersecurity

threaded - newest

CyberSeeker@discuss.tchncs.de on 25 Sep 20:52 next collapse

Yes, technically. This message is saying no new firmware updates will be forthcoming for your model. The unfortunate reality, though, is that most consumers rarely update their router firmware, regardless.

There has been a very large increase in attacks on home and small business routers, which are then used for botnets and espionage. Look for articles on Small Office/Home Office (SOHO) router attacks, but here are a few:

bleepingcomputer.com/…/cisa-vendors-must-secure-s…

arstechnica.com/…/kremlin-backed-hackers-are-infe…

thehackernews.com/…/mysterious-cyber-attack-takes…

malwarebytes.com/…/fbi-removes-malware-from-hundr…

www.cisa.gov/news-events/…/aa25-239a

cisa.gov/…/SbD-Alert-Security-Design-Improvements…

SOHO routers are ubiquitous and inexpensive devices that connect millions of Americans and small businesses to the internet. However, due to widespread sale, and subsequent use, of insecure SOHO routers that lack basic security features, threat actors, including the PRC-sponsored Volt Typhoon group, are exploiting these devices at scale.

If you are concerned, it may be worth investigating if your device supports OpenWRT, or upgrading to a newer router under active maintenance. I see the Netgear R6700 as supported on the OpenWRT Table of Hardware.

Telorand@reddthat.com on 25 Sep 20:53 next collapse

Look up alternative firmware like OpenWRT, Gargoyle Router, dd-wrt, etc. and see which fits your needs. No need to throw away working tech.

philpo@feddit.org on 25 Sep 22:50 collapse

Depending on the exact sub-version of the device it’s OpenWRT capable.

If it isn’t it should be discarded, though.

bravemonkey@lemmy.ca on 25 Sep 21:02 next collapse

Routers sometimes have security issues that need to be patched. You should keep an eye out for bulletins and make sure your endpoints have host-based security where they can (antivirus and firewalls).

This is a big fuck you from netgear though -why would you purchase another netgear router when they could just decide not to support the next model and force you to upgrade again for more money?

CyberSeeker@discuss.tchncs.de on 25 Sep 21:10 collapse

While I don’t disagree, how long should hardware vendors be required to support their products? I agree five years is probably too short, but there needs to be a limit to their liability.

Though in a perfect world, they’d open source their drivers well before then… Looking at you, Broadcom…

philpo@feddit.org on 25 Sep 22:52 next collapse

That router has been on the market for almost 10 years depending on the exact sub model OP has. That’s decent enough, imho - and most versions absolutely can still be used longer with OpenWRT.

(But I really hope the people don’t let their routers/firewalls run unlatched beyond EOL. That can get nasty)

sugar_in_your_tea@sh.itjust.works on 25 Sep 23:54 collapse

For stuff like routers, I think 10 years is reasonable.

I use a Mikrotik router and they are solid with software support. I don’t know if they have an official support cycle, but their products typically get 10+ years of support. I’m never buying consumer grade crap again.

bridgeenjoyer@sh.itjust.works on 25 Sep 23:13 next collapse

Huge fuck you to Netgear. One of the worst routers.

rekabis@lemmy.ca on 26 Sep 01:46 next collapse

All of the mainstream router manufacturers have critically insecure firmware. Nearly all routers ship with hundreds of vulnerabilities, and sometimes even zero-days, even when initially released.

It’s why it is so important to find and acquire routers that are capable of being re-flashed with third-party firmware such as DD-WRT or OpenWRT.

Check with the router database of each project to see if what you currently own is eligible. DD-WRT enjoys wider support but is more limited in functionality. OpenWRT is more powerful but needs more capable hardware to run on.

f4f4f4f4f4f4f4f4@sopuli.xyz on 26 Sep 02:44 next collapse

R6700 can run FreshTomato firmware.

Edit: If you do flash custom firmware, be sure to figure out exactly what model of R6700 you have; I think this is one of those in which v1/v2/v3 all have completely different hardware inside, and flashing the wrong one can brick it.

sunzu2@thebrainbin.org on 26 Sep 02:54 next collapse

As others have said, slap openwrt on it to keep it going

If thata too much of an ask, check out routers that are based on openwrt with normie front end. They are sort of a sweet spot currently but Foss purist won't approve.

StarvingMartist@sh.itjust.works on 26 Sep 15:12 collapse

I’m fine with openwrt, right now though I’m finding myself having to get a static IP from my ISP to get jellyfin working (I’m setting up my first domain!) so that will probably be the project for a while until I am able to get to flashing the router

Kolanaki@pawb.social on 26 Sep 02:57 collapse

It means that any updates you do receive from now on, will be purposfully crippling the hardware you have until you decide to get a new one.

Just use a custom firmware. I’m pretty sure the Nighthawks line still can have OpenWRT installed to them.