Review on 🔌 Motorola MG7550 Modem WiFi Router Combo with Power Boost - Approved by Comcast Xfinity, Cox, Charter Spectrum, and More - Ideal for Cable Plans Up to 300 Mbps - AC1900 WiFi Speed - 16x4 DOCSIS 3.0 by Dan Husband

There is a major security vulnerability in this modem that allows the ISP to change the default administrator password (factory reset) during deployment, thereby denying you access to its configuration options. Motorola support is aware of this issue and even knew exactly what my ISP changed the admin password to ("badjuju9" for all Metrocast users). Motorola's excuse is that they have to give the ISP access to the firmware during deployment, which makes sense. However, the default administrator password should be stored in non-volatile memory, which should be accessed when the modem is factory reset (by pressing the reset button for 10 seconds). As it stands, a factory reset only resets the password to the value changed by the ISP. Yes, my ISP deserves to be pissed off for its actions, but Motorola also deserves criticism for allowing ISPs to steal their customers' personal property with their lax firmware protections. In my experience with my ISP (my ISP hasn't admitted to me that they changed it, much less told me what it changed), I wouldn't be able to adjust my modem's security settings. This would leave me vulnerable to attacks as I couldn't change the default Wi-Fi passwords, enable MAC address filtering, access firewall settings, etc. by changing the default admin password to an unknown meaning and essentially blocked my modem - at least as far as my security is concerned. for example, when employees with physical access to the modem are not allowed to arbitrarily reset the password. This is a rare situation and will not apply to most end users of this product (perhaps an option worth considering on a high-end commercial model, not this consumer model). However, if this is a required feature, physical access to the modem is also required to change the default admin password. To avoid misuse and security issues, it should not be possible to change the given password remotely, especially from outside the device's local intranet.