Hackers are cracking down on TP-Link routers due to a critical vulnerability

18.06.2025 2 minutes Author: Newsman

Vulnerabilities in popular TP-Link models are being actively exploited by hackers to remotely access home and office networks. The US Cybersecurity Agency requires immediate cessation of use of models that are no longer being updated, in particular, the TL-WR940N, TL-WR841N and TL-WR740N.

The US Cybersecurity and Infrastructure Protection Agency (CISA) has added a critical TP-Link vulnerability to its official catalog of exploited vulnerabilities, highlighting its massive activity. It is a command injection via the router management web interface. The vulnerability allows the execution of system commands without authorization, opening the way for a complete device hack.

What is particularly alarming is that the exploits are already publicly available.

TP-Link TL-WR940N (V2/V4) – last updated: 2016. Still selling on Amazon with over 9,000 reviews.

TP-Link TL-WR841N (V8/V10) – last updated: 2015. Has over 77,000 reviews and ranks 165th among routers.

TP-Link TL-WR740N (V1/V2) – has not been updated for 15 years.

These devices are no longer supported by the manufacturer, and their versions are officially declared “end-of-life.” This means that they will never receive patches, even in the event of critical risks.

  • Federal agencies must remove the mentioned routers by July 7, 2025. Experts warn: if your TP-Link is older than 2016, you are already at risk. The attack can be carried out not only via the Internet, but also from the local network, which significantly expands the attack surface. This is another high-profile example of why firmware updates are not a luxury, but a necessity in 2025.
Subscribe
Notify of
0 Коментарі
Oldest
Newest Most Voted
Other related articles
Found an error?
If you find an error, take a screenshot and send it to the bot.