TP-LINK has reportedly renewed both domains used to configure its routers and access administrative panels of its devices. Both domains have now been re-registered using an anonymous registration service by an unknown entity. Users are advised to avoid accessing their TP-Link routers using the tplinklogin.net domain; instead, use local IP address. The domains could be used to distribute malware, serve phishing pages and request device or social media credentials from users before redirecting them to the router’s local admin panel IP.
Source: https://thehackernews.com/2016/07/tp-link-router-setting.html