It was posted in the DIR-655 forum about a recent security problem that was found when using WPS. Dir-655 Forum.
Hackers are able to gain access to the devices web page and operation by Brute Force hacking into the router using a scanning program to the WPS (Wi-Fi Protected Setup) feature of the device. Seems this effects a few major brands including D-Link.
This common feature is seen on most routers and wireless access point devices. This feature comes turned ON by default out of the box. In general this feature is only used with trying to connect with another device such as a wireless printer for seamless connection between the router and wireless device. In some cases, it's not used much, in most cases I've seen. Most wireless connections between devices is done with the wireless SSID and Password. This security vulnerability does not effect any SSID or password options. This only effects WPS and those devices that have the WPS option.
D-Link is aware of this issue and is currently working on identifying and verifying the issue on those products effected. Then developing, testing and releasing a fix of which I do not know when nor do I know of any details of which products are effected. "No other BETA or full release will be posted until the current vulnerability fix is included for all affected products."
So there is one work around for this vulnerability that users can take action on, Turn OFF or disable the WPS (Wi-Fi Protected Setup) option should you really be concerned about this. If you don't use this option then you can just turn it off anyways. Doing this will help block any sort of attack should one take place. Maintain the Wireless security for the SSID your using and be sure to use WPA and or WPA2 with TPIK and or AES. WPA2 and AES provides the best in security for Wireless devices. Be aware that WPA2 and AES isn't supported on all devices so check with the Mfr for your devices to find out what they support.
Also make sure your D-Link device admin log-in for the page is also secure by placing a password on it to protect the log-in for the devices web page as well.
In meantime and your really concerned about it, turn OFF WPS and be patient on firmware updates regarding WPS vulnerabilities from D-Link. They are working on it.
If you have any more questions or concerns, please post or call your local D-Link support office and ask your questions there.