WiFi vulnerabilities

shrxfn · Oct 17, 2017

I figured I would do a PSA for those on the board that don't really keep up with tech news. Yessterday it came out that there is a huge vulnerability in the WPA2 protocol that wireless routers use and it can allow a malicious person to intercept your information and even allow them to do man in the middle attacks on your stuff.

Make sure that you stuff is up to date and that you install all patches that may relate to the issue. Seems like most home OS are not as vulnerable but Android and Linux seem to be but hopefully patches will be out that resolve this for them.

https://arstechnica.com/information...l-leaves-wi-fi-traffic-open-to-eavesdropping/

srusso · Oct 17, 2017

If you aren't sure how to do this, go to the tech support section of the website for your wifi router manufacturer and follow procedure to download and install latest firmware.

JWG223 · Nov 16, 2017

I am nearly completely tech illiterate. I presume someone would have to trespass to where they could pick up my signal to do this, correct? I mean, they can't sit 1/4 mile away and somehow dip their toe in the water so to speak, can they? As in, if I cannot connect to my wi-fi, they can't either, distance wise, yes? Or do they make some enhanced sniffer that would allow them to?>

MetalVendor · Nov 16, 2017

JWG223 said:
I am nearly completely tech illiterate. I presume someone would have to trespass to where they could pick up my signal to do this, correct? I mean, they can't sit 1/4 mile away and somehow dip their toe in the water so to speak, can they? As in, if I cannot connect to my wi-fi, they can't either, distance wise, yes? Or do they make some enhanced sniffer that would allow them to?>

Great question, man. I am in the same tech illiterate boat that you're drifting in, so I do hope someone chimes in and answers this for you.

shrxfn · Nov 16, 2017

It depends. WiFi is not always a big circle around your house. It is a radio wave so it may go farther in some spots than others so theoretically someone could see it on one side of the house but not the other. My neighbor is 400ft away from me but I can see his SSID from my downstairs office.

I would make sure that you change your default admin password on the router to something only you know and also make sure you use WPA or WPA2 if your equipment can support it. Also if available patch your router with the latest firmware as this will usually plug any exploits. Some manufacturers are better at doing this than others.

AustinBR · Nov 17, 2017

JWG223 said:
I am nearly completely tech illiterate. I presume someone would have to trespass to where they could pick up my signal to do this, correct? I mean, they can't sit 1/4 mile away and somehow dip their toe in the water so to speak, can they? As in, if I cannot connect to my wi-fi, they can't either, distance wise, yes? Or do they make some enhanced sniffer that would allow them to?>

Yes and no. It's best to assume yes though.

Like anything else, if someone wants into your network, they will get into it. Consumer WiFi routers are notoriously not very secure.

JWG223 · Nov 20, 2017

AustinBR said:
Yes and no. It's best to assume yes though.

Like anything else, if someone wants into your network, they will get into it. Consumer WiFi routers are notoriously not very secure.

I am located in a "bowl" by a river, with the edges of the bowl being 80 feet high, and I lose signal if I am more than 50 feet from my house, 360 degree perimeter, which is not yet to the bowl sides. I honestly feel that this is better protection than any security i could electrically do, based on what you've said.

El Rubio · Nov 20, 2017

JWG223 said:
I am located in a "bowl" by a river, with the edges of the bowl being 80 feet high, and I lose signal if I am more than 50 feet from my house, 360 degree perimeter, which is not yet to the bowl sides. I honestly feel that this is better protection than any security i could electrically do, based on what you've said.

I would think that whoever is trying to get into your WiFi is going to want some sort of credit card or other Identification that can be translated into money for them. It stands to reason, to me at least, that it wouldn't be very common in a rural area where they would have to spend time and effort to get close to just your router. If I did it, I would park in an apartment complex, large neighborhood, or downtown area where there are likely many routers and easier pickins.

AustinBR · Nov 20, 2017

El Rubio said:
I would think that whoever is trying to get into your WiFi is going to want some sort of credit card or other Identification that can be translated into money for them. It stands to reason, to me at least, that it wouldn't be very common in a rural area where they would have to spend time and effort to get close to just your router. If I did it, I would park in an apartment complex, large neighborhood, or downtown area where there are likely many routers and easier pickins.

Valid points there. Another item that these guys look for is personably identifiable information in order to commit identity theft and other similar frauds.

Being out in the middle of nowhere will likely deter these people. Still keep your router up to date and password protected.

shrxfn · Nov 20, 2017

To me I am not so much worried about people driving by to get my CC info. It is people who want to do illegal things online and don't want it traced back to them are the ones you should worry about right now. An IP is assigned by the ISP to your router and if someone gets on your network and starts downloading child porn then they will see your IP when they go looking for the offender. Unless you can prove it wasn't you then you are in a world of trouble until you can get your name cleared. Most CC stuff is breached on bank or merchant servers as the bang for the buck is better, they spend the same amount of time breaking in but can get better rewards instead of just one CC number. But it is like any security risk add layers of security and make yourself a more difficult target than the next guy and the bad guys will pass you by and look for the low hanging fruit and will leave you alone. For a determined hacker with skills then it is just a matter of time until they get in if they really want to.

Vigilante Sniper · Nov 20, 2017

shrxfn said:
To me I am not so much worried about people driving by to get my CC info. It is people who want to do illegal things online and don't want it traced back to them are the ones you should worry about right now. An IP is assigned by the ISP to your router and if someone gets on your network and starts downloading child porn then they will see your IP when they go looking for the offender. Unless you can prove it wasn't you then you are in a world of trouble until you can get your name cleared. Most CC stuff is breached on bank or merchant servers as the bang for the buck is better, they spend the same amount of time breaking in but can get better rewards instead of just one CC number. But it is like any security risk add layers of security and make yourself a more difficult target than the next guy and the bad guys will pass you by and look for the low hanging fruit and will leave you alone. For a determined hacker with skills then it is just a matter of time until they get in if they really want to.

What shrxfn said!
I miss the days of War Driving when things weren't secure and it was easy to see vulnerabilities. Don't have the time to mess with people anymore. Never did anything malicious though, just changed a woman's resume once. That was some funny **** back then. But like shrxfn said you have to worry about someone using your wifi for downloading child porn, or someone who doesn't like you and wants to ruin your life can access your computer and download child porn and you would have a hard time proving it wasn't you. Think about that for a while.

WiFi vulnerabilities

The Best online firearms community in Louisiana.

Member Benefits:

shrxfn

Well-Known Member

srusso

Member

JWG223

Well-Known Member

MetalVendor

Well-Known Member

shrxfn

Well-Known Member

AustinBR

Make your own luck

JWG223

Well-Known Member

El Rubio

Well-Known Member

AustinBR

Make your own luck

shrxfn

Well-Known Member

Vigilante Sniper

Guns are my crack!!

Latest posts

Members online

Forum statistics

Forum statistics