How to change the password on a Wi-Fi router after it's been hacked

Detecting unauthorized access to your home network is an alarm signal that requires immediate action. If unauthorized individuals gain access to your Wi-Fi, they can not only steal traffic but also intercept transmitted data or use your equipment for illegal activities. Speed ​​of action in such a situation is critical to maintaining digital security.

The first step is to physically access the router and connect to it via cable. Wireless connection The system may be unstable or blocked by an attacker, so using a LAN cable will guarantee access to the admin panel. This will give you complete control over the access restoration process.

You don't need to be a networking expert to complete this procedure. Modern router interfaces are designed with user-friendliness in mind, and the basic steps are similar for most popular models. The key is to remain calm and follow the steps sequentially. reconfiguration devices.

Primary diagnostics and preparation for reset

Before making any changes to the settings, you need to ensure you have full control over the device. Often, hacking involves changing the administrator password, making it impossible to access the settings using standard credentials. In this case, the only correct solution is hard reset (Hard Reset).

Find a small hole on the router body, usually labeled as Reset or RestoreTo activate the reset function, use a thin object, such as a paper clip or a needle. Hold the button inside the hole for 10-15 seconds until the front panel indicators flash simultaneously.

⚠️ Attention: After the reset, all settings, including ISP connection parameters (PPPoE, L2TP), will be deleted. Make sure you have a contract with your ISP or have written down your internet login and password to restore internet access.

It's important to understand the difference between a simple power cycle and a full configuration reset. Simply unplugging the power cord won't remove passwords changed by an intruder. Only mechanically pressing the reset button will. Reset Resets the device to factory default settings.

📊 Have you ever experienced internet slowdowns due to strangers?
Yes, the speed dropped.
No, but there were suspicions
Never checked
I have complex protection.

Login to the router control panel

After a successful reset, or if you know the current administrator password, you need to connect to the device. Connect the computer to any available port. LAN Using an Ethernet cable. Open any browser and enter the router's IP address in the address bar.

The most common addresses for logging into the control system are: 192.168.0.1, 192.168.1.1 or the domain name indicated on the sticker on the bottom of the case. After entering the address, the system will request authorization. By default, the following combinations are used: admin/admin or admin/password.

If the default passwords don't work and a reset hasn't been performed, the attacker may have changed your login credentials. In this case, you won't be able to log in without a factory reset (described in the previous section). Security devices depends on the complexity of these primary passwords.

Router brand Standard IP address Default login Default password
TP-Link 192.168.0.1 admin admin
ASUS 192.168.1.1 admin admin
D-Link 192.168.0.1 admin (empty)
Keenetic 192.168.1.1 admin 1234
Tenda 192.168.0.1 admin admin

Modern models often require you to create an administrator password the first time you log in after a reset. Don't skip this step, as this password protects the control panel itself from changes. Write it down in a safe place or use a password manager.

Setting up a strong Wi-Fi password

After successfully logging into the web interface, you need to find the section responsible for the wireless network. This is usually called Wireless, Wi-Fi or Wireless modeWe are interested in the subsection Wireless Security (Wireless Network Security).

In the field SSID (Network name) You can set a new name to distinguish your network from your neighbors. However, the main focus should be on the field Password or Pre-Shared KeyHere you need to create a complex combination of characters that cannot be brute-forced.

☑️ Criteria for a strong password

Completed: 0 / 4

Select encryption type WPA2-PSK or, if the equipment supports it, WPA3Using an outdated protocol WEP or WPA Without the 2-digit suffix, the network becomes vulnerable to hacking in minutes, even with a new password. WPA2 encryption is the current security standard.

When creating a password, avoid obvious sequences like "12345678" or birth dates. It's better to use a passphrase—a phrase consisting of several words separated by characters, for example: Green#Coffee$Morning99This design is easy to remember, but extremely difficult to automatically select.

⚠️ Attention: Router interfaces may vary depending on the firmware version. If you don't see the exact name of the item, look for sections labeled "Security," "Network Key," or "WPS."

Changing the router administrator password

Many users make the mistake of changing only the Wi-Fi password but leaving the default router settings. This is a critical vulnerability. If an attacker is able to connect to the network (for example, via WPS), they can easily change the settings back if the administrator password remains. admin.

Find the section System Tools, Administration or ControlIt contains a field for changing the password for accessing the web interface. Create a unique password, different from your Wi-Fi password. This will create two-layered security for your network perimeter.

Why can't you use one password everywhere?

Using the same passwords for your Wi-Fi and router admin panel reduces overall security. If one of them is compromised (for example, through a firmware vulnerability or social engineering), an attacker can gain complete control of the device. Separating credentials makes it more difficult for an attacker to gain access.

Some providers provide their own routers with unique administrator passwords printed on a sticker. Even in these cases, it's recommended to change them to your own. Default passwords are often known to hackers and are included in the default databases for each model.

After changing the administrator password, the device may request re-authorization. Enter the new credentials. Access to the router is now protected, and even with the Wi-Fi password, an unauthorized person will not be able to change the network configuration.

Additional network security measures

Changing passwords is the basics, but for maximum security, it's worth enabling additional features. First, disable this feature. WPS (Wi-Fi Protected Setup). Despite the convenience of connecting without entering a password, this protocol has serious vulnerabilities that allow it to be bypassed.

It is also recommended to limit the list of connected devices by MAC addresses. In the section Wireless MAC Filtering You can set up a whitelist that will only include your devices. Any other device, even with the password, will be unable to connect.

Update your router firmware regularly. Manufacturers release updates that patch security holes. Check the section Firmware Upgrade or Software updateKeeping your software up-to-date is often the only thing that can stop automatic virus scanners.

If you have a lot of guests in your house, set up a guest network (Guest Network). This will create an isolated Wi-Fi segment that won't have access to your personal files or smart home devices. You can give temporary passwords to guests without worrying about the main network.

Checking connected devices and eliminating threats

After changing all passwords, you need to check the list of active clients. There's a section in the router interface Client List, Attached Devices or Client listCompare the number of devices and their MAC addresses with the gadgets you own.

If you see an unfamiliar device, block it immediately through the router interface (function Block or Deny). Then forcefully disconnect all clients by rebooting the router again. This will kick everyone off the network, and only those who know the new password will be able to connect.

Pay attention to the activity indicators on your router. If you've turned off all your devices, but the Wi-Fi or LAN indicator continues to flash actively, this is a sure sign of a "neighbor" connection. In this case, it's worth temporarily disabling the Wi-Fi module and connecting only via cable until the full setup is complete.

Remember that constant network monitoring is the best prevention. Some routers allow you to send notifications via email or app when a new device is connected. Enable this feature if your model supports it. notifications.

What should I do if my router doesn't accept the new password?

If the router displays an error or freezes after entering a new password, it's possible the password uses invalid characters or encoding. Try using only Latin letters and numbers. The issue could also be with your browser cache—try accessing the settings in incognito mode or a different browser.

Can a hacked router infect a computer with a virus?

A router itself rarely transmits viruses to a PC, as it's network equipment. However, by redirecting DNS requests, an attacker can redirect you to phishing copies of bank or social media sites, where you enter your personal information. Therefore, changing your DNS settings to automatic or verified (for example, Google 8.8.8.8) is extremely important.

How often should I change my Wi-Fi password?

Under normal circumstances, changing your password every 6-12 months is sufficient. However, if you suspect a hack, notice a sudden drop in speed, or see an unfamiliar device in your client list, you should change your password immediately, without waiting for the scheduled date.