u/Easy_Letterhead8928

Just read the TechRadar article about the FBI getting court orders to remotely wipe/reset thousands of compromised TP-Link routers because of Russian GRU malware (APT28）

On one hand, these old SOHO routers (Archer C5/C7, WR841N, etc.) are End-of-Life, have no security patches, and are basically being weaponized into botnets. But on the other hand, the fact that the government can just drop commands into consumer hardware at scale is a huge reminder of how vulnerable our home networks actually are.

Once a router stops getting firmware updates, it’s a ticking time bomb. What is everyone’s strategy here? Do you just buy a new consumer router every 3-4 years, flash OpenWrt, or move to hardware-level firewalls/gateways?

I’m very careful with my digital privacy. I use a password manager, run a VPN for encryption, and block all trackers. Despite this, my credit card was still compromised. I found a random Amazon Prime charge that no one in my family authorized. I disputed it and got a new card, but I’m frustrated. If my data is encrypted and my passwords are secure, how did they get my info? Is it a merchant breach, or am I missing a major blind spot in my setup?

Ever wonder how much you’re still leaking despite having a VPN on? We often focus on encryption but ignore the metadata breadcrumbs. Public Wi-Fi captures your MAC address before you even log in, and most OS-level telemetry pings home outside your VPN tunnel.

The biggest giveaway? Data-center IPs. When you use a standard VPN, you're signaling to every site and bank that you're hiding behind a commercial server, which triggers aggressive fingerprinting and blocks. I've realized that unless you're masking your hardware identity and using residential-grade routing, you're just moving the tracking from your ISP to a VPN provider.

What was the "hidden leak" that finally changed how you view digital privacy? Are we just playing whack-a-mole with software apps?

I consider myself a tech enthusiast (I use VPN, hardware firewalls, Adblock ....), but I almost got caught off guard this morning.

I got an email from what looked like my bank regarding a "suspicious login." The tone was perfect, the UI was identical, and it even used my actual full name, no more "Dear Customer" nonsense. I only caught it because the sender’s domain had a tiny, single character swap that I barely noticed on my phone.

It feels like the old "look for typos" advice is officially dead in 2026. Is anyone else seeing a massive jump in quality lately? Are you guys relying on specific filters or just becoming extremely paranoid?

For me, it was realizing my ISP was selling my browsing history to advertisers. That led me down the rabbit hole of VPNs, then Custom ROMs, and finally building my own firewall. For those just starting: start small. Switch to Firefox and get a password manager. What was the one change that made you feel actually 'private'？

Setting up a new instance and looking to optimize my filters. Currently using OISD (Full). Does anyone have recommendations for lists that block 'sponsored' content in apps without breaking banking sites? Trying to find that perfect balance between 'blocking everything' and 'not breaking the internet for my family'