Cloud-based router management is not necessarily less secure than the traditional method of logging into the device over the LAN, said Farpoint Group analyst Craig Mathias. Any router connected to the Internet may be susceptible to an outside attack, he said. And management from the cloud is more convenient because it can be done from anywhere, he said.
"We see cloud-based management as ultimately the dominant vehicle ... for almost everybody," Mathias said.
However, Mathias warned against allowing automatic firmware or software upgrades.
"If someone hacks that interface, they can load any firmware they want into your router," he said. Some users complained that when they discovered the problem and tried to turn off automatic firmware updates, they couldn't. The rollback instructions posted Friday included directions for turning off that setting.
In the policy, Cisco said it "may share aggregated or anonymous user experience information with service providers contractors or other third parties," but that the data would not personally identify the user in any way.
Mathias condemned that practice.
"There is no legitimate reason for them to do that, other than they want to make more money," he said.
Sign up for CIO Asia eNewsletters.