This week D-Link confirmed that six older VPN router models released in 2011 and 2012 have a critical security flaw that could lead to malware infection. [Due to the high likelihood of exploitation of this vulnerability, D-Link does not plan to provide patches or fixes.

However, what we do know from the bug report is that the flaw could allow an unauthorized user to conduct a remote code execution attack. Essentially, memory issues within the router could allow hackers or other threat actors to inject malware or other malicious code into the device.

D-Link is offering affected customers 20% off the purchase of a new model router, the D-Link DSR-250v2 4-Port Unified Services VPN Router, which sells for $210 on D-Link's website. Right now, it's cheaper on Amazon during their Black Friday sale.

If you're looking to switch brands (which you might be after a security incident like this one), take a look at our roundup of the best Wi-Fi routers. Likewise, if you need the latest and greatest wireless technology, there are some great Black Friday Wi-Fi 7 router deals on both traditional routers and mesh ones.

D-Link reports that if you continue to use the affected devices, you will be doing so against the company's recommendations; however, you should make sure to update firmware, update passwords frequently, and keep Wi-Fi encrypted with a different password .

PCMag notes that some of these devices are still sold on Amazon; read reviews before you buy to find out what a VPN router is and what the pros and cons are.