NetGear patched a gaping security hole that used a backdoor username and password--by changing it to another, easily discovered username and password (in German): Heise Security reports that a recently reported security hole that affects NetGear systems among others has been patched in a way that doesn't increase security. The site suggests that this might be reason enough (at least in Germany?) to return the product for a refund. NetGear's download page says the patch "Fixed illegal user access the WEB configuration utility." See more discussion of this patch on Slashdot.