NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

CarlE_01's avatar
CarlE_01
Aspirant
Oct 08, 2019
Solved

NightHawk R7000p - Http uses an insecure authentication procedure

I keep getting notifications from Lenovo and Bitdifender that my network "http uses an insecure authentication procedure" and tells me to update the software. I went checked for router updates and it...
  • michaelkenward's avatar
    michaelkenward
    Oct 09, 2019
    CarlE_01 wrote:

    Thanks for the feedback, hopefully I can clear it up.

     

    Not really. You have just repeated what we already knew and added a few bits of probably irrelevant detail.

     

    Try this:

     

    Search - NETGEAR Communities – Bitdefender

     

    Follow some of those items and you will see that this has been going on for years.

     

    Bitdefender makes money by scaring people. Perhaps with Halloween coming up we can expect to see more scary stuff around.

     

    In the meantime, you might like to Lenovo security, whatever that is, and Bitdefender and ask them what is going on.

     

     

     

     

     

     

CarlE_01's avatar
CarlE_01
Aspirant
Oct 08, 2019

Thanks for the feedback, hopefully I can clear it up.

 

Issue: Whenever I connect to my home network, I get a pop up from Lenovo security and Bitdefender that my network is unsecure and could have "malicious activity". The issue is recent, it just started happening like a week or two ago. I thought maybe it was the firmware and checked for updates, but it keeps showing that the NightHawk(AC2300, R7000P, V1.3.1.64) firmware is up to date. 

 

Whenever I connect to any other public wi-fi, I just get a warning that the wi-fi is unsecure, and I know thats to be expected because its public wi-fi.I just don't understand why I'm getting a warning on my home network for "malicious activity".

 

Hopefully you can see the screenshot, Bitdefender is suggesting I upgrade to the latest firmware, but acording to NetGear the router is up to date. 

 

My question then is, what could possibly be sparking up my anti-virus that there is malicious activity on my home-network? Also, the internet/wi-fi keeps dropping, but I've been looking around the forums here, and I think I found a solution for that. 

 

*I disabled the SSID, run a VPN, have an AV (bitdefender), and of course have a WPA2 password for the wi-fi.* 

michaelkenward's avatar
michaelkenward
Guru - Experienced User
Oct 09, 2019
CarlE_01 wrote:

Thanks for the feedback, hopefully I can clear it up.

 

Not really. You have just repeated what we already knew and added a few bits of probably irrelevant detail.

 

Try this:

 

Search - NETGEAR Communities – Bitdefender

 

Follow some of those items and you will see that this has been going on for years.

 

Bitdefender makes money by scaring people. Perhaps with Halloween coming up we can expect to see more scary stuff around.

 

In the meantime, you might like to Lenovo security, whatever that is, and Bitdefender and ask them what is going on.

 

 

 

 

 

 

  • myersw's avatar
    myersw
    Master
    Oct 09, 2019

    I assume that when home your network is configured as Private and not Public? If Private I am surprised at Bitdefender popping up as I run Bitdefender and have never seen that, both now and when I was running Netgear routers. 

    • CarlE_01's avatar
      CarlE_01
      Aspirant
      Oct 09, 2019

      Thank you all for your feedback/input. I'll try running other AV's to see if I get the same warnings, if all else fails, I'll just buy a new router until I can fix the current one. 

       

       

      • antinode's avatar
        antinode
        Guru
        Oct 09, 2019

        > [...] I'll try running other AV's to see if I get the same warnings,
        > [...]

         

              "There's a zombie right behind you!"

         

              "No problem. If I use these new earplugs, then I won't have to
              listen to your worrying warnings."

         

        > [...] if all else fails, [...]

         

           Define "fails".

         

        > [...] I'll just buy a new router [...]

         

           If the new router also uses HTTP (rather than HTTPS) for its login
        authentication, then I'd expect the same results.  Other products (from
        other vendors?) may use HTTPS (from the LAN), which I'd expect to clear
        these complaint(s).

         

        > [...] until I can fix the current one.

         

           "fix the current one" how?  Netgear has been getting similar
        complaints for a long time, so I wouldn't hold my breath waiting for
        new/better firmware for your R7000P to resolve it.  (And then you'll
        un-buy your "a new router"?)

         

           However, this "problem" is similar to a situation where the lock on
        the front door of your home can be opened without a key
        _from_the_inside_.  That is, someone who's inside your home can unlock
        your front door without a key.  But he's already _inside_your_home_.

         

           Is a key-outside/key-inside door more secure than a
        key-outside/knob-inside door?  Perhaps, but is it something about which
        to set your hair on fire?  Your decision, of course.