Most home Wi-Fi networks are insecure by default — not because routers are bad, but because the default settings are chosen for convenience, not security. These four settings take 10 minutes total to fix and significantly improve your network's protection.
How to Access Your Router Settings
All router settings are accessed through a web browser — no special software needed.
Open any browser on a device connected to your Wi-Fi → type 192.168.1.1 or 192.168.0.1 in the address bar → press Enter. If neither works, check the sticker on your router — the login address is usually printed there.
Log in with your router's admin username and password (also on the sticker, or try "admin" / "admin" if you haven't changed it).
Fix 1: Change the Default Admin Password
Every router of the same model ships with the same default admin password. Anyone on your network (or anyone who can physically reach your router) can log into the settings using the default credentials found with a quick internet search.
In your router settings: look for Administration, System, or Password → change the admin password to something strong and unique. Write it on the router sticker with a marker.
Fix 2: Use WPA3 or WPA2 Encryption
WEP and WPA encryption are outdated and can be cracked in minutes. Your router should be using WPA2 at minimum, or WPA3 if it's a newer model.
In your router settings: Wireless → Security → Encryption/Authentication → WPA3 (or WPA2-AES if WPA3 isn't available). Never use WEP or WPA (without a number).
Fix 3: Change the Default Wi-Fi Network Name (SSID)
The default network name (SSID) typically includes your router model — for example "NETGEAR_5G" or "TP-Link_7832". This tells attackers exactly what router you have, making it easier to research known vulnerabilities for that model.
Change it to something that doesn't identify your router brand, your name, or your address. In router settings: Wireless → SSID/Network Name.
Fix 4: Disable WPS
WPS (Wi-Fi Protected Setup) is a feature that lets devices connect to your network by pressing a button on the router or entering an 8-digit PIN. The PIN-based method has a known vulnerability that allows it to be brute-forced in hours.
In router settings: Wireless → WPS → Disable. You won't notice this is gone — you connect devices with the normal password.
Bonus: Create a Guest Network
Most modern routers support guest networks. Enable one for visitors, smart home devices (TVs, thermostats, cameras), and any device you don't fully trust. Guest network devices can access the internet but can't see other devices on your main network — so a compromised smart TV can't access your laptop's files.
In router settings: Guest Network → Enable → set a separate password.
Quick Checklist
| Security Fix | Where to Find It | Time |
|---|---|---|
| Change admin password | Administration → Password | 2 min |
| Set encryption to WPA2/WPA3 | Wireless → Security | 2 min |
| Change network name (SSID) | Wireless → Network Name | 1 min |
| Disable WPS | Wireless → WPS | 1 min |
| Enable guest network | Guest Network | 3 min |