Home Network Security: What to Check on Your Router and Wi-Fi

Most people don’t spend much time thinking about their home router. It sits on a shelf, the internet works, and life goes on. That’s exactly why it’s easy to overlook. But your router is one of the most important security devices in your home. It sits between the internet and everything connected to it, including laptops, phones, smart TVs, cameras, tablets, printers, and smart home devices. U.S. government guidance describes consumer routers as critical to protecting your privacy, your connected devices, and the security of your entire home network.

That matters even more now because home devices aren’t just being targeted for access to your network. In 2025, the FBI warned that cybercriminals were taking advantage of end-of-life routers, especially ones with remote administration turned on. In March 2026, the FBI also warned that compromised routers and other internet-connected devices can be used by criminals to make their activity online look like it’s coming from someone else’s home network.

The good news is that you don’t need to be deeply technical to make your home network more secure. In most homes, a few basic checks go a long way.

1. Make sure your router is still supported by the manufacturer

A router can still seem fine while quietly falling behind on security. It can power on, connect to the internet, and do its basic job while no longer receiving important software updates. That is what makes old routers risky. Once a router reaches end of life, newly discovered security problems usually will not be fixed. Current FBI and NSA guidance says unsupported equipment should be replaced, especially routers from 2010 or earlier that no longer receive security updates.

What to do: Check whether your router is still supported by the manufacturer. If it’s not, replace it.

2. Keep the router’s firmware up to date

People are used to updating their phones and computers, but the router often gets ignored. If the router’s firmware isn’t updated, security issues may not get fixed. Current FTC and NSA guidance says to keep router software up to date, preferably through automatic updates.

What to do: Log into your router, check for firmware updates, and install them. If automatic updates are available, turn them on. If your internet provider supplied the router, see whether updates are pushed automatically.

3. Change the admin password and the Wi-Fi password

Your router usually has two passwords that matter. One is the Wi-Fi password people use to join the network. The other is the admin password used to control the router itself. That second one is especially important because if someone gets into the router settings, they can change them and weaken your security.

What to do: Change both passwords if they are still set to the default, weak, or reused somewhere else. Use strong, unique passwords or passphrases.

4. Use WPA3 whenever possible

Some of the most important router settings are also Wi-Fi security settings. One of the biggest is the wireless security mode. Current FTC and NSA guidance says to use WPA3 Personal whenever possible, but WPA2 Personal can still be used if needed.

WPA3 is the better choice when it is available. WPA2 is still acceptable for older devices and older routers that are still supported. But if your router only offers outdated options like WEP or older WPA settings, it’s a clear sign the device is too old and should be replaced.

What to do: Use WPA3 if your router supports it. If not, use WPA2. Avoid WEP and older WPA settings.

5. Rename your Wi-Fi network, but don’t make it personal

Your network name, also called the SSID, should not broadcast personal information like your name, apartment number, or exact address. NSA guidance says to change the default SSID to something unique. It also says not to hide the SSID, because hiding it doesn’t add real security and can cause compatibility issues.

What to do: Rename your network to something neutral and unique. Don’t use personal details, and don’t bother hiding the SSID.

6. Turn off risky convenience features you don’t need

Some router features make setup easier, but they can also create unnecessary risk if left on. Current FTC guidance says to turn off remote management, Wi-Fi Protected Setup, and Universal Plug and Play unless you truly need them.

What to do: Turn off remote management, WPS, and UPnP unless you have a real reason to use them and understand the tradeoff.

7. Use a guest network, and separate less-trusted devices when possible

A guest network isn’t just for visitors. It’s also a simple way to keep less-trusted devices away from your main network. FTC says a guest network helps because fewer people know your main Wi-Fi password, and a guest’s infected device is less likely to affect your primary network. NSA takes this further and recommends segmenting your network between your primary Wi-Fi, guest Wi-Fi, and IoT devices.

What to do: Set up a guest network if your router supports it. If it doesn’t, that’s a limitation worth keeping in mind when deciding whether it’s time to upgrade your router. If you can also separate smart home devices onto their own network, even better.

8. Make sure the router firewall is turned on

Many routers include a built-in firewall, but it’s still worth checking whether it’s turned on. NSA recommends using routers with firewall capabilities, and the FTC also advises consumers to turn the router firewall on.

What to do: Log into your router settings and make sure the firewall is enabled.

What home users should check today

If you want a simple checklist, start here:

• Check whether your router is still supported.

• Install the latest firmware updates.

• Change the admin password and Wi-Fi password if they are weak, default, or reused.

• Use WPA3 if available, or WPA2 if needed.

• Rename the Wi-Fi network to something neutral.

• Turn off remote management, WPS, and UPnP unless you truly need them.

• Turn on the router firewall.

• Use a guest network for visitors and, if possible, for less-trusted devices.

A simple monthly home network check

Once a month, take a quick look at your router and Wi-Fi settings. Check for software updates. Make sure the firewall is still on. Confirm that remote management, WPS, and UPnP are still turned off unless you truly need them. Review your guest network settings if visitors or smart home devices use your network. And whenever you log into the router settings, log out when you’re done. FTC guidance supports these kinds of routine checks.

One more good habit: NSA guidance recommends rebooting your router weekly. That’s not a substitute for updates or secure settings, but it can still be a helpful maintenance habit.

The bottom line

Home network security is easy to ignore because the router usually fades into the background. But that’s exactly why it matters. It connects everything else to the internet. If it’s old and unsupported, poorly configured, or never updated, it can quietly leave the whole home network more exposed than it should be. Current federal guidance is pretty consistent on the basics: use supported equipment, keep it patched, lock down admin access, use strong Wi-Fi security, and turn off features that open more doors than they need to.