What is UPnP
UPnP (stands for Universal Plug and Play) is a set of network protocols. It is designed to automatically configure network devices. Simply put UPnP automatically forwards a port if the connection was initiated from the local network. It trusts the LAN outgoing requests by default. Here is why you should disable this feature on your wireless router to stay safe.
Vulnerability in Implementation
Some models of routers have bad implementation of UPnP. This makes your router vulnerable. Such vulnerability can help hackers change DNS setting on router. After that all devices on a LAN can be routed to a phishing site, a ransom demanding page or even encrypt your files.
The malware located on any device on the LAN can initiate as many outgoing connections to its server as it wants. If the router has UPnP enabled it means that it would trust any outgoing connections and allow to forward a port. Thus the malware would be able to bypass the router, establish a connection with malicious server and as a result provide a permanent access to your computer.
That is why we strongly recommend that you disable Universal Plug and Play in the settings of your Wi-Fi router (as well as WPS/QSS ).
How to Disable UPnP on Router
- Go to the Connectivity page.
- Select the Administration tab.
- Untick the correspondent checkbox.
- Click OK to save settings:
- Open the WAN page. The Internet Connection tab should show up.
- Switch Enable UPnP toggle to No.
- Click Apply at the bottom of the page:
Go to Forwarding > UPnP and press Disable.
(If Universal Plug and Play is already OFF the button would be named “Enabled” and you would see notification “Current status: Disabled”)
Go to Advanced > Advanced Network.
Unset the checkbox Enable UPnP.
Press Save Settings:
Don’t worry, your Skype will work well with this feature disabled. Tell us in the comments if you keep it Enabled or disabled and have you faced the malware attacks.