HI there,

I was recently referred to a new client, during my initial inspection I noticed the Mikrotik (951Ui) was running FW 6.43.2 (Sep 2018). This is an ISP provided unit that seemed to escape the ISP's 6-month checks for quite some time..

They (ISP) have since updated the router (remotely) to one of the 2021 FW's, but this does not sit well with me,. I air on the side of caution & have mentioned to them (ISP) that they should consider the router as compromised & replace it outright. They (ISP) seem to believe the router has never been compromised, something I struggle to believe due to the fact that the router was left unpatched for so long, despite being "managed".

I would love to hear from Mikrotik & the members on this forum.

Thank you!

i concur with @anav,

You don't have to replace the device, just do a NetInstall!
It will Clear everything on the Device and install the Linux-kernel and ROUTEROS from scratch

@anav & @ConnyMercier

Thank you for your input! In my panic I totally forgot about Netinstall *face palm*. I'll share this with the ISP in question & ask that they comply with an onsite Netinstall.

It's much easier for them to send you repalcement device already configured.