Security & Privacy
Posted on
by
Joshua Long
If you’re like most people, you rarely think about your Wi-Fi router. As long as Wi-Fi is working, you have nothing to worry about, right?
What you might not realize is that an outdated router could significantly compromise your security and privacy.
In this article, we’ll explore how you can find out whether you’re past due for a router upgrade, and if so, how to choose a router that will keep you safe for the foreseeable future.
Can routers become infected with malware?
In most home networks, your router is the device that sits between you and the public Internet; it’s effectively your hardware firewall.
If your router can be hacked into remotely, it can potentially become infected with malware. Hundreds of thousands of Internet-connected devices have been infected with malware such as Mirai and its variants, VPNFilter, or Cyclops Blink in recent years.
Many more devices are vulnerable to infection and have remotely exploitable vulnerabilities. In the past month alone, D-Link has issued advisories warning of devices that have such vulnerabilities and will never be patched; 120,000 of them remain online.
What can an infected router do to harm you?
In the “best case” scenario, router infections could slow down your Internet connection. This is because infected routers typically act as part of a botnet, stealing your bandwidth to attack other systems.
But reduced Internet speed isn’t the only potential concern. Router malware could also potentially spy on your network traffic as well. This can, of course, negatively impact both your security and your privacy.
How to check for router firmware updates
Although some routers have a built-in mechanism for updating their own firmware, most do not. If your router was provided by your Internet service provider (ISP), they’re likely responsible for keeping it updated. But if you purchased it yourself, it’s your own responsibility to check for and install updates regularly.
Check with your router manufacturer for specific instructions; they can vary significantly between models and brands. In some cases you’ll need to download an app from the Apple App Store or Google Play Store to manage your router. Older routers typically require you to go to a 192.168.x.y IP address in your browser to log in as an admin and check for updates.
What if there are no firmware updates available? Is my router safe?
If your router says there are no firmware updates available, that doesn’t necessarily mean that it’s safe. It could also mean that your router may no longer be supported. If that’s the case, it might actually be vulnerable and remotely exploitable.
So how can you know which is true? You can try to check with the manufacturer to see if they have issued an advisory about an end-of-life or end-of-support (EOL/EOS) date for your specific router model. But if you can’t find one, a good rule of thumb is to try to look up the date of the most recent firmware update that was installed on your router.
If it has been more than a year since the last firmware update, there’s a strong possibility that the manufacturer might no longer be supporting your model. And if that’s the case, it’s time to upgrade to newer hardware, to be safe.
Which router is the safest? Should I get Wi-Fi 7 or 6E?
The current wireless network standard is Wi-Fi 7 (IEEE 802.11be). However, Wi-Fi 6E (the final version of the IEEE 802.11ax standard) is still widely in use today. The only Apple devices that currently support Wi-Fi 7 as of late 2024 are the iPhone 16 lineup. It’s likely that many Apple products released throughout 2025 will support Wi-Fi 7 as well. Notably, Wi-Fi routers are backwards compatible with devices that support older standards.
If you shop around for a new router (or mesh Wi-Fi system, with multiple units), you’ll probably see a lot of routers advertised as Wi-Fi 6. This is an earlier version of the same 802.11ax standard as Wi-Fi 6E. If you’re shopping online, you may even see Wi-Fi 5 (IEEE 802.11ac) wireless routers or access points; these often have “AC” in their model numbers. Don’t buy any router designated as either Wi-Fi 5 or 802.11ac. Not only is it an older, slower standard; more importantly, most routers based on this standard were released between 2014 and 2019. That very likely means that many deeply discounted Wi-Fi 5 routers are either no longer getting firmware security updates, or could stop getting updates soon. It’s not worth the risk.
Similarly, I would advise against buying routers advertised as Wi-Fi 6; the first routers based on this standard were released in 2019 or 2020. So even routers designated as “Wi-Fi 6” may be old, outdated, and no longer getting security updates.
For this reason, it’s best to buy a Wi-Fi 7 router to ensure you’ll get the longest lifespan out of it. Some Wi-Fi 7 routers and mesh systems are quite pricey; if you’re on a budget, at least get a Wi-Fi 6E router, at minimum—after verifying with the manufacturer that the model is still supported and receiving firmware updates.
What key features should I look for in a new router?
If you’re the type of person who likes to just “set it and forget it,” I strongly recommend choosing a router that advertises itself as self-updating. Automatic updates can give you peace of mind, at least in the near term; you’ll want to check in at least yearly to ensure that your router model is still getting updates from the manufacturer.
Another feature to consider is routers that come with—or at least support switching to—open firmware such as OpenWrt. Such firmware has the advantage of being developed and supported by an active community of enthusiasts. This likely means that it will continue to get updates for much longer than hardware manufacturers typically release proprietary firmware updates for their own products.
One Wi-Fi 7 router that advertises both automatic updates and OpenWrt firmware is the Linksys Velop Pro 7.
Key takeaways
If you take away nothing else from this article, here are the key points:
- Routers require security updates, just like other devices.
- If your router hasn’t gotten a firmware update in over a year, it’s probably time to buy a new one.
- When buying a new router or mesh system, choosing one with Wi-Fi 7 ensures that it’s a relatively new model and will be supported as long as possible.
- Consider buying a router or mesh system that advertises automatic firmware updates. But verify at least annually to ensure it’s still getting updates.
- Consider getting a model that comes with (or advertises compatibility with) open firmware such as OpenWrt, if long-term support is important to you.
How can I learn more?
You can also subscribe to our e-mail newsletter and keep an eye here on for the latest Apple security and privacy news. And don’t forget to follow Intego on your favorite social media channels: 
About Joshua Long
Joshua Long (@theJoshMeister), Intego’s Chief Security Analyst, is a renowned security researcher and writer, and an award-winning public speaker. Josh has a master’s degree in IT concentrating in Internet Security and has taken doctorate-level coursework in Information Security. Apple has publicly acknowledged Josh for discovering an Apple ID authentication vulnerability. Josh has conducted cybersecurity research for more than 25 years, which is often featured by major news outlets worldwide. Look for more of Josh’s articles at security.thejoshmeister.com and follow him on X/Twitter, LinkedIn, and Mastodon.
View all posts by Joshua Long →
