Many off the shelf routers are insecure as they are supplied with weak default passwords, outdated or insecure firmware, and a general lack of robust security features. Off the shelf routers are typically designed for ease of use rather than enterprise-level security, leaving them vulnerable to attacks.