NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
ALL FIRMWARE should be updated. More info: https://betanews.com/2017/10/16/krack-wpa2-security-vulnerability/
Netgear isn't offering patches for a load of vulnerable devices, and I'm still trying to get a support/lifecycle policy out of them. There are also other known vulnerabilities with other products, which they have not addressed.
Note that Netgear is mostly ignoring CERT: http://www.kb.cert.org/vuls/id/CHEU-AQNMYE
They also seem to have disabled all or all but one thread using the word "KRACK" as search terms.
I'm unsure if they care about consumers, but getting the word out to businesses that Netgear is horrible on security might be a wake-up call for them.