Govt warns against vulnerability in TP-Link routers: See how to prevent being hacked

The Indian Computer Emergency Response Team (CERT-In), known for its quick action in spotting security issues in widely used software and gadgets, has sounded an alarm about a serious security problem in TP-Link routers. TP-Link is a popular brand in India, and its routers are commonly used to connect devices like mobile phones, laptops, and tablets to the internet without any wires.

These routers are now the focus of a big concern. They work as a bridge between us and our internet service providers, giving us smooth internet access. But, CERT-In has found a flaw in these routers that could let hackers from far away run unauthorized actions on the affected system. This issue is found in TP-Link Archer models that came before the version C5400X(EU)_V1_1.1.7 Build 20240510.

The problem comes from a binary file called “rf test” that hasn’t been properly cleaned up. This file exposes a network service that can be tricked into running commands without needing any login. CERT-In says that if this flaw is taken advantage of, hackers can run commands with high-level access rights on the affected system without needing to log in.

Click here to visit CERT-In page

To fix this serious issue, CERT-In suggests immediately updating the TP-Link software. They also recommend users to take some steps to make their Wi-Fi networks safer and guard against possible threats:

• Keep Your Firmware Up-to-Date: Make sure your router’s firmware is updated regularly to include the latest security fixes from the manufacturers.
• Change Default Login Details: Change the default login details to stop hackers from using commonly known usernames and passwords.
• Use Strong Encryption: Use WPA3 or WPA2 encryption to keep your data transmissions safe from being intercepted.
• Turn Off Remote Management: Switch off remote management features to lower the chance of unauthorized access to router settings from the internet.