Why you should set a password on your Wi-Fi, and what risks await you without protection
An open Wi-Fi network is like an unlocked door to your home. It can be used not only by neighbors looking to "catch some free internet," but also by hackers who can intercept personal data, infect devices with viruses, or use your IP address for illegal activities. According to statistics, RoskomsvobodaMore than 30% of home networks in Russia remain unprotected or use outdated encryption protocols that can be cracked within minutes.
Even if you think "no one can hack my network," remember: botnets automatically scan open access points, connect to them, and use them for DDoS attacks or cryptocurrency mining. As a result, you get not only traffic theft, but also internet slowdown, router overheating, and even IP blocking by the provider for suspicious activityAnd if a hacker intercepts your smartphone or laptop's traffic, they can gain access to social media passwords, banking information, and correspondence.
Luckily, you can password-protect your Wi-Fi router in 5-10 minutes, even if you've never accessed its settings before. The key is to choose the right encryption type and create a strong password. In this article, we'll cover step-by-step instructions for popular brands (TP-Link, ASUS, Keenetic, Zyxel, MikroTik), we'll tell you which security standard to use in 2026 and warn you about common mistakes that make the network vulnerable.
Which Wi-Fi Encryption Type to Choose in 2026: A Comparison of Standards
Before setting a password, you need to decide on security protocolThis determines how easy or difficult it will be to hack your network. Modern routers typically offer 3-4 options, but not all of them are equally secure.
| Encryption type | Security level | Speed of work | Device support | Recommendation |
|---|---|---|---|---|
WPA3-Personal |
⭐⭐⭐⭐⭐ | High | Devices since 2019 | ✅ Optimal choice |
WPA2-PSK (AES) |
⭐⭐⭐⭐ | Average | All devices | ⚠️ Acceptable if there is no WPA3 |
WPA2-PSK (TKIP) |
⭐⭐ | Low | Obsolete devices | ❌ Do not use |
WEP |
⭐ | Very low | Very old gadgets | ❌ Dangerous! |
If your router supports WPA3-Personal, choose it—it's the most modern standard that protects even against dictionary attacks. If your device list includes very old gadgets (for example, iPhone 5 or Samsung Galaxy S3) that do not work with WPA3, use WPA2-PSK (AES)Don't choose under any circumstances. WEP or TKIP - these protocols can be hacked in a few seconds using free utilities like Aircrack-ng.
⚠️ Please note: Some providers (eg. Rostelecom or Beeline) by default they set weak passwords on their routers like 12345678 or model name. Always reset to factory settings!
Step-by-step instructions: how to password-protect Wi-Fi on routers of different brands
The setup process is almost identical for all devices, but menu paths and item names may vary. Below are detailed instructions for popular brands. If your model isn't listed, use the universal method (section below).
1. TP-Link (Archer, TL-WR, Deco)
To set a password on TP-Link:
- 🌐 Connect to the router via cable or Wi-Fi (if the network is open).
- 🖥️ Enter in your browser
192.168.0.1or192.168.1.1(the address is on the sticker below). - 🔑 Enter your login and password (usually
admin/adminoradmin/empty). - 📡 Go to
Wireless → Wireless Security. - 🔒 Choose
WPA3-PersonalorWPA2-PSK, enter a password (minimum 8 characters). - 💾 Save settings (
Save) and reboot the router.
2. ASUS (RT-AX, RT-AC, ZenWiFi)
For routers ASUS:
- 🌐 Connect to the router's network.
- 🖥️ Open
192.168.1.1orrouter.asus.com. - 🔑 Login/Password —
admin/admin(if you haven't changed it). - 📡 Go to
Wireless → General. - 🔒 In the field
Authentication methodselectWPA3-Personal. - 🔐 Enter the password in
WPA Pre-Shared Key(minimum 12 characters). - 💾 Click
Apply.
Is the correct protocol selected (WPA3 or WPA2)?
Does the password contain letters, numbers and symbols?
Does the network name (SSID) contain any personal information?
Is the guest network disabled or also password protected?
-->
3. Keenetic (Giga, Hero, Extra)
In routers Keenetic the interface is different:
- 🌐 Connect to the router.
- 🖥️ Enter
192.168.1.1ormy.keenetic.net. - 🔑 Login/Password —
admin/1234(if you haven't changed it). - 📡 Open
Wi-Fi network → Access point. - 🔒 In the section
SecurityselectWPA3 with transition mode. - 🔐 Create a password (recommended length: 15+ characters).
- 💾 Save the changes with the button
Apply.
⚠️ Attention: In Keenetic Compatibility Mode (WPA2 + WPA3) may be enabled by default. If you have older devices, leave it. If all your devices are modern, choose Clean Mode. WPA3 for maximum safety.
A universal way to password protect Wi-Fi on any router
If your model is not listed above or the interface is different, follow this algorithm:
- Find your router's IP address. It is indicated on the sticker at the bottom (usually
192.168.0.1,192.168.1.1or192.168.8.1). You can also find out via the command line:ipconfig (for Windows)ifconfig (for macOS/Linux)Look for the line
Default Gateway. - Log in to your control panelEnter the IP in the browser, use the login/password from the sticker (usually
admin/adminoradmin/empty). If it doesn't work, reset the router using the button.Reset(hold for 10 seconds). - Find the Wi-Fi sectionLook for tabs like:
- 📶
Wireless/Wi-Fi/Wireless network - 🔒
Security/Security/Protection
- 📶
- 🔐
Security Mode→WPA3-Personal(orWPA2-PSK) - 🔑
Password/Passphrase→ Create a strong password - 📡
SSID→ Change the network name (do not use the router model!) - Save and reboot. Click
Save/Apply, then reboot the router throughSystem Tools → Reboot.
1) Is the password entered correctly (case sensitive!).
2) Does the device support the selected protocol (WPA3 does not work on very old gadgets).
3) Is the MAC address filter enabled on the router (disable it in Wireless MAC Filter).-->
How to Create a Strong Wi-Fi Password: Rules and a Generator
Weak passwords are the leading cause of home network hacking, according to Kaspersky, 60% of users use combinations like 12345678, qwerty or date of birth. These passwords can be guessed in seconds. To protect yourself, follow these rules:
- 🔢 Length: minimum 12 characters (optimally 15+).
- 🔤 Compound: letters (upper and lower case), numbers, symbols (
!@#$%). - 🚫 Forbidden: names, dates of birth, router names, dictionary words.
- 🔄 Update: Change your password every 6-12 months.
Examples of strong passwords:
Tr0ub4dour&3-Fox!,
C0rrect-H0rse-Battery-Staple,
7H#k9Lm@2pQ1!.
If it is difficult to come up with one yourself, use password generators (for example, in KeePass or Bitwarden). Or use this method:
The "phrase + symbols" method:1. Come up with an easy-to-remember phrase: "My cat likes to sleep on the radiator.".
2. Take the first letters:
Mclsnb.3. Add numbers and symbols:
Mklcnb!2026@WiFi.4. Done! This password is easy to remember but hard to guess.
How to check how strong your password is?
Copy the password (don't save it!) and check it on services like How Secure Is My Password or Kaspersky Password CheckerThey'll show how long it will take to crack the code. If it's less than 100 years, come up with a different one.
Common Mistakes When Setting Up a Wi-Fi Password and How to Avoid Them
Even after setting a password, many users make mistakes that undermine security. Here are the most common:
- 🔑 Using the default passwordMany people leave the factory password (for example,
adminor12345678). All the neighbors and hackers know him. - 📡 Open guest networkIf you have enabled
Guest Wi-Fi, but did not set a password on it, attackers will connect through it. - 🔄 Obsolete protocol.
WEPorWPA-TKIPhacked in minutes. Always chooseWPA3orWPA2-AES. - 📱 The password is too short. Password
12345678They'll find it in 4 seconds. Minimum 12 characters. - 🔍 Transferring passwords via SMS/messengersIf you send your password to your friends in cleartext, it can be intercepted.
Another dangerous mistake is Using the same password for Wi-Fi and the router admin panelIf a hacker connects to your network, they will be able to access your router settings at 192.168.1.1 and change whatever you want. Always use different passwords!
⚠️ Note: Some routers (eg. Zyxel Keenetic or ASUS RT-AX88U) have firmware vulnerabilities that allow password bypass. Regularly update your router's firmware in the section Administration → Firmware Upgrade!
Additional Security Measures: How to Make Wi-Fi Invulnerable
A password is just the first step. For maximum security, follow these steps:
- 🔄 Disable WPSThis feature simplifies device connection, but has critical vulnerabilities. Disable it in
Wi-Fi → WPS. - 📵 Hide the SSIDIn the Wi-Fi settings, enable the option
Hide SSIDorHide networkThen your network will not be visible in the list of available ones. - 🔗 Enable MAC address filteringAllow only your devices to connect (find their MAC addresses in the settings).
- 🛡️ Update the firmwareOutdated versions of software contain security holes.
- 🌐 Use a VPN on your router. Some models (ASUS, Keenetic) support
OpenVPNorWireGuard.
If you have a business or important data, consider dividing the network into VLANsFor example, in MikroTik or Ubiquiti You can create separate networks for work devices, guests, and IoT gadgets (smart bulbs, cameras). Then, even if one segment is hacked, the others will remain protected.
1. Protocol: WPA3-Personal.
2. Password: 15+ characters (letters + numbers + special characters).
3. Additionally: disabled WPS, hidden SSID, updated firmware.-->
FAQ: Frequently Asked Questions About Wi-Fi Passwords
Is it possible to set a Wi-Fi password from your phone?
Yes, but not on all routers. Some models (TP-Link Tether, ASUS Router, Keenetic) have mobile apps where you can change your password. To do this:
- Download the official app for your router.
- Connect to his network (even if it is open).
- Log in (login/password from the sticker).
- Find the section
Wi-FiorWireless networkand change the password.
If there is no mobile app, use the browser on your phone (enter the router IP).
I forgot my Wi-Fi password. How do I recover it?
There are 3 ways:
- View on the router: if the password has not been changed, it is indicated on the sticker below (field
Wi-Fi PasswordorKey). - Go to the router settings:
- Connect to the router via cable.
- Enter its IP in the browser (for example,
192.168.1.1). - Log in (login/password from the sticker).
- Look at the password in the section
Wi-FiorWireless.
Reset (Hold for 10 seconds). Everything will return to factory settings.What password is impossible to hack?
There are no 100% invulnerable passwords, but the closest option is:
- 🔐 Length: 20+ characters.
- 🔤 Composition: random letters (uppercase + lowercase), numbers, special characters.
- 🎲 Example:
xT7!pL9@qW3#mK5$vN2%. - 🔄 Update: change every 6 months.
Even a supercomputer can't crack such a password in a reasonable amount of time. But it's hard to remember—store it in a password manager (KeePass, 1Password).
Is it possible to set different passwords for 2.4 GHz and 5 GHz?
Yes, if your router supports it. separate settings for frequenciesFor example, in ASUS or TP-Link with two ranges:
- Go to Wi-Fi settings.
- Find the tabs
2.4GHzAnd5GHz. - Set a different password for each network.
This is convenient if you want to give guests access to only 2.4 GHz and leave 5 GHz for your personal devices.
What should I do if my neighbors hacked my Wi-Fi?
First, check if someone is actually connected:
- Go to your router settings (
192.168.1.1). - Find the section
DHCP Clients,Connected DevicesorClient list. - Check if there are any unfamiliar devices there.
If you find someone else's gadgets:
- 🔒 Change your Wi-Fi password (complex, 15+ characters).
- 🔄 Update your router firmware.
- 📵 Disable WPS.
- 🛡️ Enable MAC address filtering (allow only your devices).
If the hack keeps happening, you may have a weak password for your admin panel. Change it. Administration → Password.