I'll say this now: any router company that doesn't update for security holes are perpetrators for hackers that abuse it to create botnets. Is that simple. Wish Congress can do something about it but it won't happen anytime soon if not ever.

A 100,000-router botnet is feeding on a 5-year-old UPnP bug in Broadcom chips [arstechnica.com]