Trusted Reviews is supported by its audience. If you purchase through links on our site, we may earn a commission. Learn more.

These Wi-Fi extenders are vulnerable to hacking

Using Wi-Fi extenders? Security researchers from IBM have found a critical loophole with TP-link extenders that could be leaving you exposed, so you know, it’s time to get your patch on.

We’ll skip right to it: the RE350, RE365, RE500 and RE650 are all affected by the vulnerability, and if you have one of those you need to make sure you have the most up to date firmware available, ideally with a check on the TP-Link website to make sure everything is hunky dory.

Related: Best VPN 2019

But what’s the problem? This vulnerability lets internet baddies to get hold of your Wi-Fi extender, and redirect traffic through it to malware and other malicious internet locations. This could give them access to a variety of Internet of Things (IoT) devices through the extender, and the hackers don’t need to be within range of the extender’s Wi-Fi signal: the attack works by sending a malicious HTTP request to the Wi-Fi extender.

This is easy to do as long as you know the IP address of the device, but these are easy to find online and there are several search engines are repositories online dedicated only to finding the IP addresses of insecure IoT devices. The vulnerability was discovered by Grzegorz Wypych, a security researcher for IBM X-Force, the only security team I know named after the second best X-Men team.

Related: Best wifi extenders

If you’re nervous about your home network, the best option to ensure security in the long-term is vigilance. As more and more connected devices make their way online, there are more and more potential attack vectors for malicious actors trying to gain access to your digital home. It’s a good idea to try and keep up with security and firmware updates for every item you’re allowing access to your hub.

 

Why trust our journalism?

Founded in 2004, Trusted Reviews exists to give our readers thorough, unbiased and independent advice on what to buy.

Today, we have 9 million users a month around the world, and assess more than 1,000 products a year.

author icon

Editorial independence

Editorial independence means being able to give an unbiased verdict about a product or company, with the avoidance of conflicts of interest. To ensure this is possible, every member of the editorial staff follows a clear code of conduct.

author icon

Professional conduct

We also expect our journalists to follow clear ethical standards in their work. Our staff members must strive for honesty and accuracy in everything they do. We follow the IPSO Editors’ code of practice to underpin these standards.