Newer TP-Link router models share data with security company Avira without permission.
According to a Reddit poster and tech website XDA, TP-Link’s standalone and mesh routers secretly share data about many DNS requests with security company Avira. Sharing is enabled by default.
Avira provides a cloud-based security service for the TP-Link routers: HomeShield Security. Although TP-Link gave the impression that end users can disable the service, data reportedly remains to be shared after opting out of the feature.
According to the whistleblowers, a great deal of data is being sent to *.safethings.avira.com. The number of DNS requests ranges from 42,000 to 80,000 per day.
Update: We reached out to TP-Link for a response. A spokesperson confirmed that some models automatically send requests to Avira subdomains, a German antivirus software company. These models include HomeShield, a security feature supported by Avira.
“Contact with this server is required to enable the security feature”, TP-Link said. “After reviewing the software, we identified errors in the DNS request logic. This resulted in frequent requests. In addition, when the HomeShield package was disabled, it was found that frequent contact was still being made.”
“All contact with this server is anonymous. It never contains personal information. We have optimized the software to prevent frequent inquiries. These improvements become active after installing the new firmware. We will publish new firmware for models daily.”
The firmware is available for most models. Below, you’ll find a list of all affected products, relevant firmware and release dates. TP-Link promises that an update will be available for every model starting March 28.
No. | Model | Release Time | Firmware Download |
---|---|---|---|
1 | AX55v1 | DONE | Link to firmware |
2 | AX73v1 | DONE | Link to firmware |
3 | AX53v1 | 2022-03-18 | |
4 | AX90v1 | 2022-03-21 | |
5 | AX72v1 | 2022-03-21 | |
6 | AX4400v1/V2 | 2022-03-21 | |
7 | AX4800v1 | 2022-03-21 | |
8 | AXE75 | DONE | Link to firmware |
9 | AX75v1 | DONE | Link to firmware |
10 | AX55v2 | DONE | Link to firmware |
11 | Deco X68v1 | DONE | Link to firmware |
12 | Deco X20/X25/W3600v4 | DONE | Link to firmware |
13 | Deco X60v3 | DONE | Link to firmware |
14 | Deco X3600 | DONE | Link to firmware |
15 | Deco W6000 | DONE | Link to firmware |
16 | Deco W6000v2.6 | DONE | Link to firmware |
16.2 | Deco W7200 V1 | DONE | Link to firmware |
17 | Deco X50v1 | DONE | Link to firmware |
18 | Deco X55v1 | DONE | Link to firmware |
19 | Deco X60v4.6 | DONE | Link to firmware |
20 | Deco XE5300v1 | 2022-03-20 | |
21 | Deco X80-5Gv1 | 2022-03-20 | |
22 | Deco X90v1 | 2022-03-21 | |
23 | Deco X5700 | 2022-03-21 | |
24 | Deco Voice X20 v1 | 2022-03-25 | |
25 | Deco X20-4G | 2022-03-25 | |
26 | Deco X73-DSL v1 | 2022-03-25 | |
27 | Deco X20-DSL v1 | 2022-03-25 | |
Tip: Research finds vulnerabilities in nine popular Wi-Fi routers