Backdoor Account Found in D-Link DIR-620 Routers

Catalin Cimpanu, writing for BleepingComputer: Security researchers have found a backdoor account in the firmware of D-Link DIR-620 routers that allows hackers to take over any device reachable via the Internet. Discovered by Kaspersky Lab researchers, this backdoor grants an attacker access to the device's web panel, and there's no way in which device owners can disable this secret account. The only way to protect devices from getting hacked is to avoid having the router expose its admin panel on the WAN interface, and hence, reachable from anywhere on the Internet.

Re:DD-WRT is pretty darned secure

[fred6666]

Too bad their last stable release (V24 SP1) is from 9 years ago. They are almost done with the SP2!

And by 100% open source, you mean is heavily dependent on closed source drivers obtained from broadcom under NDA?
With outdated info on their wiki on how to build the source?