Norton - Please provide a service for your paying customers that externally tests our (the customers) network/router externally for hacking vulnerabilities

Home network attacks and vulnerabilities on our home routers from "an advanced nation" has been getting a lot of news lately.

https://www.google.com/search?source=hp&ei=qj8HW9eRJ9DYsAXT_b-YCA&q=500%...

This thread has gotten a couple of kudos and this is a very relevant issue and potential weakness for anyone and all with home routers, even if people have their personal routers fully patched. Many Norton customers do not even know what patching a router means. Due to the current worldwide cyber climate, I am surprised no one from Symantec/Norton has commented on this very important issue in this thread regarding home router vulnerability and the suggestion for a way to test our routers vulnerabilities via a Symantec/Norton external test, regardless of the make and model of our routers. This is a feature that can be added to further protect us paying Norton subscribers (see original post).

Here are some excerpts from one of multiple recent articles talking about this issue:

https://www.usatoday.com/story/tech/talkingtech/2018/05/24/500-000-route...

"Hackers infect 500,000 consumer routers all over the world with malware"

"the malware can allow hackers to steal website credentials as well as render a router unusable, cutting off access to the Internet. "

“These hackers are exploiting vulnerabilities and putting every American’s privacy and network security at risk," said FBI Special Agent in Charge Bob Johnson"

- End article excerpts

The thing is, many do not know what patching means. Those that do may have their routers fully patched but may still be vulnerable. They are just crossing their fingers but may need to purchase an entirely new router.

Norton Symantec is great for protecting PCs but if a customer's home router gets compromised, bank account information, health information, 401k and any other very important sensitive information people have that is accessed via their home networks could be at risk for being stolen and compromised. Having great protection at the end point/PC level is great but it ultimately means nothing if the hardware device outside of the PC but still in our homes becomes compromised. Currently there is nothing Symantec will detect or do regarding a vulnerable or compromised home router. I am hoping this changes in the very short future due to the dangerous online Cyberwarfare environment. Large state sponsored actors are behind a lot of this, there is little consequence for bad actors (large or small) and the IOT can largely be considered the "wild west" at this point.

Symantec, please read the original post in this thread and implement my idea. Guessing and crossing fingers is not a good option when in the Wild Wild West. It may still remain the "Wild West" but in implementing what I am suggesting, you would be giving us a higher degree of armor against the gunfighters/quick draws in this environment.

Hi Soul,

I just ran the "F Secure router checker" tool and the "Qualys SSL Labs test". Even though I am highly interested in tech and IT and consider myself a moderate to advanced tech savy person, I did not know about these websites. How much less would the many millions who are not really tech savy know about them? Thank you for providing these links and notifying me of them.

As you so aptly stated "the end user is NOT following best practices". Many (if not most) of Symantec's user base (and majority of the whole population in general) has no idea about the websites you just provided. They have no idea of the need to update and patch a router. They may not even know what a patch is. Many people will not know about this forum. Many will not visit this forum. Many will not know to update and check their various hardware and software. We are a small group compared to the majority. This is why I think its so important that Norton provide a service like the services you directed me too (and then some) automatically, during a regular AV check for paid users, so that everyone, whether tech savy or not can get tested and notified automatically.

As we see from the news, we are (and have for a while now) dealing with a global situation and a very dangerous internet environment where global powers/players are probing and taking advantage of people's naivety. Many people just do not know any better. They are gonna trust that router the ISP gives them or they are going to continue using their 5-10 year old unpatched router. This currently leaves many people incredibly vulnerable, even if they have a current Norton Subscription with the AV installed. With what I am proposing, Norton can tell/notify them of their routers vulnerabilities whether they know about this stuff or not.

What I am proposing is Norton would have its own version of "F Secure router checker" tool and the "Qualys SSL Labs test" and other vulnerabilities testers as a built in test that Symantec performs during routine checks on its paid Antivirus software.

The feature I am requesting would communicate with Norton's servers to run Norton's version of those types of tools you provided (and then some) to check paid subscribers router vulnerabilities when the client/customer runs its regular AV check. So in essence, Norton will check for "virus signatures" as usual when clicking "Scan now" but it will also communicate with the Symantec server so that the Symantec server will run Symantec's version of "F Secure Router" and "Qualy's SSL Lab test" (and then some) externally and then provide the user with a "status" of what it found.

I think this would be a great way to notify and protect all of Symantec's user base, tech savy or not, Norton Core user or not. If everyday, untech savy people dont know whats wrong (or that there is even a problem), how are they supposed to know what to fix? I think my suggestion would fix this and I would like to see my suggestion in a future update of Symatec AV very soon.