Secure Your Home WiFi

TL;DR

Keep your home network safe by changing default passwords, updating firmware, using strong encryption (WPA3 if possible), enabling a firewall, and being careful about what devices connect to your WiFi.

1. Change Default Passwords

Your router comes with default usernames and passwords that are publicly known. Hackers use these to get into networks. Changing them is the most important first step.

1. Find Your Router’s Address: Usually, it’s 192.168.1.1 or 192.168.0.1. Type this into your web browser’s address bar.
2. Log In: Use the default username (often ‘admin’) and password (often ‘password’, ‘admin’, or blank). Check the router’s label if you don’t know them.
3. Change Admin Password: Look for a section called “Administration”, “System Tools” or similar. Change the admin password to something strong – at least 12 characters, with a mix of letters, numbers and symbols.
4. Change WiFi Password (SSID): Find the Wireless settings. Change both the network name (SSID) and the password (WPA key/passphrase). Again, use a strong password.

2. Update Router Firmware

Firmware is the software that runs your router. Updates fix security holes and improve performance.

1. Check for Updates: Most routers have an “Update” or “Firmware Upgrade” section in their settings (usually under Administration).
2. Download & Install: Follow the on-screen instructions to download and install any available updates. Important: Do not interrupt the update process! This can damage your router.

3. Use Strong WiFi Encryption

Encryption scrambles the data sent over your WiFi, making it harder for others to read.

1. WPA3 is Best: If your router and devices support it, use WPA3 encryption. It’s the most secure option.
2. WPA2 is Good: If you can’t use WPA3, use WPA2 with AES encryption (TKIP is older and less secure).
3. Avoid WEP: WEP is very old and easily cracked – do not use it!

4. Enable Your Router’s Firewall

A firewall acts as a barrier between your network and the internet, blocking unwanted access.

1. Find the Firewall Settings: Look for a “Firewall” section in your router’s settings (usually under Security or Advanced).
2. Enable SPI Firewall: Make sure the State Packet Inspection (SPI) firewall is enabled. This is usually on by default, but check to be sure.

5. Control Device Access

Limit which devices can connect to your WiFi.

1. MAC Address Filtering: Some routers allow you to create a list of allowed MAC addresses (unique identifiers for each device). Only devices on this list can connect. This is more advanced, but adds extra security.
2. Guest Network: Use the guest network for visitors. This keeps them separate from your main network and protects your personal data.

6. Keep Software Updated

Make sure all devices connected to your network (computers, phones, smart TVs, etc.) have their software updated regularly.

1. Enable Automatic Updates: Turn on automatic updates whenever possible.

7. Be Careful What You Click

Phishing emails and malicious websites can compromise your network security.

1. Think Before Clicking: Don’t click links in suspicious emails or visit untrusted websites.