Reply

Security concerns

m3rak1
Follower

Security concerns

I was about to update my NETGEAR nighthawk router’s firmware, when I log in to this site (https://www.routerlogin.net), a small window pop-up with a warning that the connection is not private, and that the “website” I’m trying to access  may be impersonating, to steal my personal or financial information. You should go back to previous page. As shown below; (attchment)

 

First, it looks like my wifi is totally hijacked, because the reason why i'm trying to update my firware is that our home wifi is acting weird, it comes in and out. Now, this seem like the "man in the middle" trying to discourage me to update. Has anyone expereince this>If so would you recommnet to disregards the message and proceed and updating?

 

Any help will do,

Thanks

 

 

Model: R7000|AC1900 Smart WIFI Router
Message 1 of 3
antinode
Guru

Re: Security concerns

> I was about to update my NETGEAR nighthawk router's firmware, [...]

   An actual model number would be more helpful than that ambiguous
description.  See the product label.

> Model: R7000|AC1900 Smart WIFI Router

   Is that accurate?

> [...] when I log in to this site (https://www.routerlogin.net), a
> small window pop-up with a warning that the connection is not private,
> [...]

   "this site" should be your own router, not some outside-world site.
All you're seeing is a complaint (from Safari) about sending some user
credentials over an unencrypted/insecure link ("http://" instead of
"https://").  The easy thing to do is ignore the warning, and proceed.
Presumably, you're talking to your own gizmo on your own LAN.  If
someone can overlisten to that traffic, then you're already in big
trouble.

> [...] our home wifi is acting weird, it comes in and out. [...]

   "weird" is not a useful problem description.  It does not say what
you did.  It does not say what happened when you did it.  As usual,
showing actual actions with their actual results (error messages, LED
indicators, ...) can be more helpful than vague descriptions or
interpretations.

> [...] Has anyone expereince this>

   If you mean the http-v.-https warning, then approximately everyone.

> If so would you recommnet to disregards the message and proceed and
> updating?

   Probably.  Various problems have been reported in these forums for
various versions of firmware for the R7000, which a little searching
should find.

Message 2 of 3
IrvSp
Master

Re: Security concerns

You might want to Google "Safari this connection is not private this website may be impersonating" as there are many Safari users reporting this from different sites.

 

It appears that most of those people reporting similar problems are all from around mid-Sept. 2017. Has to do with expired certificates on the Mac?

 

See https://discussions.apple.com/thread/8093076 for instance. Supposedly other browsers have no problems on the Mac?

Message 3 of 3
Top Contributors
Discussion stats
  • 2 replies
  • 1360 views
  • 1 kudo
  • 3 in conversation
Announcements