Skip to main content
Home NetworkHome & Business8 min read · June 2026
Hero image — sourcing in progress

How to Secure Your Home Router

Your router is the front door to your home network. Every device connected to your Wi-Fi — phones, laptops, smart TVs, doorbells — passes through it. Most home routers are set up once by an engineer and never touched again, leaving them running on default passwords and outdated firmware for years. This guide takes under 20 minutes and dramatically reduces your network's attack surface.

The default password problem

Router default admin credentials are published online by manufacturers. Criminals use automated tools to scan for routers using these defaults — it takes seconds. Changing your admin password is the single most important step in this guide.

Step 1Change the Default Admin Password

Default router admin passwords are publicly documented online. Any device on your network — or anyone who can guess your Wi-Fi password — can potentially log in to your router and change its settings. Change the admin password to something strong and unique.

How to do it

  1. 1Access your router admin panel (usually 192.168.0.1 or 192.168.1.1 in your browser)
  2. 2Log in with the default credentials printed on the router label
  3. 3Find the Admin password or Management password section
  4. 4Change it to a strong, unique password — at least 16 characters, not used anywhere else
  5. 5Write the new password on the router label or store it in a password manager

Step 2Update the Router Firmware

Router firmware updates fix security vulnerabilities. Many routers have an update option in the admin panel — some can even auto-update.

How to do it

  1. 1Log in to your router admin panel
  2. 2Look for Firmware update, Software update, or Advanced settings
  3. 3Run any available updates
  4. 4Enable automatic updates if this option exists
  5. 5If your router is over 5 years old and no longer receives updates, consider replacing it

Step 3Set Your Wi-Fi to WPA2 or WPA3 Encryption

WEP and open Wi-Fi networks leave your traffic readable by anyone nearby. WPA2 is the minimum standard; WPA3 is better if your router supports it.

How to do it

  1. 1In your router admin panel, find Wireless Settings or Wi-Fi Settings
  2. 2Look for Security Mode or Encryption
  3. 3Select WPA3 if available, otherwise WPA2 (also shown as WPA2-PSK or AES)
  4. 4Never select WEP, WPA (first generation), or None
  5. 5Save and reconnect your devices to the network

Step 4Set Up a Guest Network for Visitors and Smart Devices

A guest network is a separate Wi-Fi network that is isolated from your main network. Use it for visitors, smart home devices (TVs, doorbells, thermostats), and any device you do not fully trust.

How to do it

  1. 1In your router admin panel, find Guest Network or Guest Wi-Fi
  2. 2Enable it and set a different password from your main network
  3. 3Ensure the guest network cannot access your main network devices
  4. 4Connect all smart home and IoT devices to the guest network instead of your main one

Step 5Disable WPS and Remote Management

WPS (Wi-Fi Protected Setup) was designed to make connecting devices easier but has well-documented security weaknesses. Remote management allows your router to be administered over the internet — rarely needed and a significant risk.

How to do it

  1. 1In your router admin panel, find WPS settings and disable WPS
  2. 2Find Remote Management or Remote Access settings and disable them
  3. 3Also disable UPnP (Universal Plug and Play) if you are comfortable doing so — it allows devices to open ports automatically

Get your free personalised cybersecurity plan

Answer a few quick questions and we'll build a step-by-step plan tailored to your situation — no jargon, no credit card required.

Start for free →

Related guides

Smart Home Security

How to secure connected devices on your network.

What Is a VPN?

When a VPN genuinely helps — and when it does not.

What Is Phishing?

The most common entry point for UK cyberattacks.

Frequently asked questions

How do I access my router settings?

Type 192.168.0.1 or 192.168.1.1 into your browser address bar (not search bar) while connected to your home Wi-Fi. If neither works, check the label on the bottom of your router for the default gateway address. Log in with the admin credentials printed on the router label.

What is WPA2 and why does it matter?

WPA2 (Wi-Fi Protected Access 2) is the encryption standard that protects your Wi-Fi traffic. Older standards (WEP, WPA) have known weaknesses that allow criminals to intercept your data. WPA2 or WPA3 should be selected in your router's wireless security settings.

Do I need to update my router firmware?

Yes. Router firmware updates fix security vulnerabilities. Many routers can auto-update, but this is often off by default. Check your router admin panel for a firmware update option and run it — then enable automatic updates if available.