I am trying to figure out if this was some sort of breach or some other issue. For my Nighthawk XR1000 router with firmware 1.0.0.64:
Last night, my Internet connection stopped, though the network and the internet didn't show as disconnected (Win 11).
I received a Nighthawk app notification:
-
Armor detected a new device, AG Mobile ULTRA phone. View Details. MAC [address]
In the device list, the MAC address shown was for a wired PC and said online, wired connection, and had an IPv4 address allocated. The PC was off but Ethernet cable plugged in.
There was a dual entry in the device list for the same computer name that had a different MAC address, connection type also wired, but with offline status.
This morning, two more notifications:
-
Suspicious connection blocked: Armor has detected and blocked a suspicious connection on Synology NAS. (I do have a Synology NAS, Ethernet cable.)
-
New Device: Armor detected a new device, Intel computer. View Details. MAC [another-address]
I do have Armor subscription. Nighthawk repeatedly said no firmware update available. Today, found, manually downloaded and installed v. 68 and then v. 72.
I have posted in Netgear's Reddit, but it doesn't look very active. Do you have any suggestions or ideas on seeing whether this was a inaccurate notification or a security breach?
Back to top
