That is according to recent security tests carried out by IoT Inspector in collaboration with German tech magazine Chip. The models analysed in these tests were primarily used by small businesses and homes and included Asus, D-Link, Linksys, Netgear, and Synology units.
“The firmware versions were automatically analysed by IoT Inspector and checked for more than 5,000 CVEs [Common Vulnerabilities and Exposures] and other security issues,” Lukavsky said.
Yes, you do certainly want to be sure at least that you do regularly update your router firmware, and have changed the default password for something unique and difficult to guess. Older routers, not receiving OEM updates, can possibly be flashed with OpenWRT or similar, which may provide security patches and enhanced functionality.