Linksys did not return a request to confirm or comment on the reports. Johannes Ullrich, chief research officer with the SANS Institute, told The Reg that in addition to updating firmware, owners and administrators of the vulnerable routers should look to tighten their administrator access controls."They should either turn off remote admin functionality, or restrict it to IP addresses from which they need to access the router if they can," Ullrich said.Quite a few routers are actually built on top of Linux, and that means security vulnerabilities in the Linux kernel or related software — like the Shellshock bug in the Bash shell — could affect your router.
Keeping your home router updated is a crucial part of staying secure.
Shellshock affected a number of routers, and we’ve also seen routers hacked and turned into botnets. You should ensure your router is getting security updates, too.
Depending on your router, you may have to do this by hand, set up automatic updates — or not do anything at all.
Your router runs a “firmware,” which is essentially its operating system.
Older routers may just offer a page where you can upload a firmware file, as on this older Netgear router below.