NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
Solved
Spam email RE R7000 Firmware?
I received 5 emails about firmware vulnerability for the R7000. Is this spam? Email is below. From: "NETGEAR Security" <NETGEARSecurity@e.netgear.com> Date: June 21, 2017 at 9:21:10 AM PDT Subjec...
It's working now. It seems to have been down for a couple of days.
Then why is there no update at all available!? Do you send these mails just to mail around or is there any sense in them? because I can't find the update.
I think what Elaine meant, was that this is a general notification for all registered owners, to tell or remind them to update to latest firmware verison IF THEY HAVE NOT DONE SO ALREADY.......I guess not everybody is necessarily updating the firmware everytime there is an update released! ;-)
And since Netgear does not log/track every users router firmware version, they choose to release a general reminder notification to all users.
Elaine can correct me if I am wrong here! :-)
Same mail, no update available.
download site only shows north america update
Does this mean the eu routers are save, or are the eu router screwed for the time being.
Current Firmware Version V1.0.7.12_1.2.5
and the north America update does not show any security fixes either so this is rather confusing
I dont expect mail about a "new" firmware version that has been online for over 4 months or so
If they are senting e-mails again possible firmware updates that is a nice thing and the fact people always do not keep track of the version of firmware they are running with the ten thousand things we have to do in our lives, so at lease reminds them to check.
That's correct @Mr_DJ and thank you for that follow up answer.
bjwierda EU customers are safe, just make sure you have the latest firmware installed. Firmware version 1.0.8.34 has an additional feature (router data analytics) and doesn't necessarily mean that they are more secure. Firmware version 1.0.8.34 contains all fixes/enhancement in 1.0.7.12 and with router data analytics feature.
I too received the very same worded Netgear notice for another Netgear product on that date. Mine has been updated to latest firmware many months ago. In researching other user's experience, I came across the following post,
"The origiinal message source indicates the message was sent from a server with the IP
address 136.147.187.62. A WhoIs query indicates that IP address belongs to either
Salesforce.com, Inc. in San Francisco or else ExactTarget, Inc. in Indianapolis. According
to Wikipedia, ExactTarget was the original name of Salesforce.com; but neither is
connected to Netgear.
The return E-mail address domain was NOT netgear.com but e.netgear.com. A DNS
lookup for netgear.com yields the IP addresses 54.200.99.0 and 54.218.118.186, both of
which belong to Amazon. A DNS lookup for e.netgear.com, however, yields the IP address
68.232.201.28, which belongs to ExactTarget.
Since the US-CERT (an agency of the United States Department of Homeland Security)
has not reported a Netgear security vulnerability for June, this whole mess smells."Given the range of products that seem to have been reported as needing security updates, does anyone know if Netgear has seen/commented on this matter?
