Home WiFi Router Security: What You Should Know

What a Router Does

Routers typically can create at least two different networks, one for private use and one for guest access. Routers also connect multiple networks and forward packets destined for its own or other networks.  All of your devices (laptop, phone, tablet . . .etc) therefore talk to the router, and the router in turn connects to a modem and protects your devices with a firewall. 

Why Router Security is Important

A secure home router is an essential component of your personal information security as your router connects to the outside world, and may be targeted by automated scans and exploits that may not be visible to you. Additionally, please be aware of the following:

• Although your router does not store information, sensitive information passes through it when you access various online accounts and services, and this data can be compromised if your router is hacked.
• A compromised router can also be used to attack other devices on your local network such as your phone, tablet, laptop or smart devices, and can be used to launch denial of service attacks.  

Security Focused Routers

Some users opt to purchase security focused routers which offer auto updates. However there are a number of factors to be considered when evaluating security focused routers. These types of routers can be costly and often offer limited customization ability and annual subscriptions for services. It is recommended that before swapping a device provided by your ISP, that you confirm that:

• the router provided by your ISP is a separate device vs. single device (known as a “gateway”) which contains both the modem and the router.
• you can bring your own device onto the network.
• all available ISP provided services will work with the router you’re considering.  
• the router you purchase will continue receiving firmware updates (product life cycles are often short, so you want to be sure that you’re not purchasing an end of life product).

Examples of security focused routers include:

• OnHub from Google
• Bitdefender Box
• Norton Core
• Eero
• F-Secure Sense

Configuring and Securing Your Home WiFi Router

The primary recommendation is that you change the default administrator username and password that comes with your router.  For instructions and other recommendations for your home setup, please see the following article from the NJCCIC, How to Configure and Secure a Home Wi-Fi Router. A supplemental recommendation is to periodically reboot your router as some malware strains will not survive a reboot.  

Additionally, you can periodically check to see a list of devices that are connected to your router.  To do so:

• Go to an internet browser on one of your connected devices.
• Go to www.routerlogin.net
• Enter the router username and password
• Select Attached Devices
  • To update this screen, click the Refresh button

If you see unfamiliar connected devices, you can change/reset your WiFi password.

Resources

• https://routersecurity.org/
• https://motherboard.vice.com/en_us/article/9kn3g7/how-to-protect-your-home-router-from-attacks
• https://insights.sei.cmu.edu/sei_blog/2018/07/security-begins-at-the-home-router.html