make WWAY your homepage  Become a fan on facebook  Follow us on twitter  Receive RSS Newsfeeds  MEMBERS: Register | Login

Making sure your wireless signal is secure

READ MORE: Making sure your wireless signal is secure
interenet300.jpg
If you're wireless at home or at work, and don't have a lock on your wireless network, hackers and piggy backers can use your internet portal, which slows down your connection speed and opens the door to potential malicious attacks. "Wardriving" is the act of driving around town with a wireless computer to find open connections to people's unsecured wireless networks. We drove around a Wilmington apartment complex with Gregory Oldham, a network security consultant, to demonstrate just how easy it is to tap into private systems. He used a system called net stumbler. Here's the alarming statistic, we found that at least one third of homes in just this one area were unsecured. Oldham says a wardriver, or internet thief, who accesses your network could not only use your internet, but could steal personal information stored on your computer. They could also use your computer as a "zombie" to send out spam or malicious software, making you look like the culprit. "Potentially, if they get infected on their computer, it could spread to your computer, because most network worms are aware that there's a network connection,” Oldham said. The instructions as to how to secure your wireless network differ, depending on the brand of your router. The best way to do so is by referring to the router's instructions manual or calling the ‘800’-number generally listed on the instructions. With Netgear, for example, you'll choose a security option. "Just put a password, encrypt it, use wireless protection protocol, or the WEP or WPA, or just put something out there that shows that it's security-enabled, so that people can't just connect to it, for free." You can tell if someone is using your internet connection by doing a little detective work or you can contact Greg Oldham at capefeartech.com.

Disclaimer: Comments posted on this, or any story are opinions of those people posting them, and not the views or opinions of WWAY NewsChannel 3, its management or employees. You can view our comment policy here.

»

Wireless security best practices

I agree that Unsecured WiFi provides an easy target for hit and run style attacks allowing hackers and criminals to cause severe damage while remaining invisible and undetected Here are 7 easy steps for Wireless Security Best Practices. http://www.airtightnetworks.com/fileadmin/pdf/resources/WiFi_Security_Be...

How About a Law?

There are all kinds of laws out there that try to idiot proof and protect our society... building and electrical codes, helment laws, etc... Why can't we pass a federal law to protect consumers that says all wireless modem manufacturers (Netgear, Linksys and the like) must ship their devices already password protected... or force the user to set a password when setting up the device. That way the owner of the device has to go out of his or her way to make it open. I think most people leave their modems unprotected because they don't know how to password protect them or are just too lazy.

LOL

you MUST be liberal! First...most manufacturers ship their units with wireless TURNED OFF BY DEFAULT..so the user already must PHYSICALLY turn on wireless and set it up....a LAW...COME ON DUDE..when will this NANNY STATE CRAP STOP.

Law

Why don't we just pass a law that says we have to pass a law on everything under the sun no matter how stupid it is.

Opening up a can of worms

Only hiding your SSID for wardrivers who go around hacking is useless and your suggestion of only locking down a SSIS is worthless and creates a liability. How do you ask? If you have a linux box simply run one of a few programs.. Airjack or Kismet are twop that can sniff out non broadcasting SSIDs. Windows is a bit more complex but Airmagnet or AirSnort will do the trick. Linksys, Belkin and Dlink routers all have a default username and password out of the box. How hard is it to save your router box in a closet and write two passwords inside of it? Your administrative password to your router (make sure your default of not allowing access via https or http is DISABLED) and then your wireless security key... You have a few choices of security with the most two common being WEP and WPA. WEP is weak.. VERY weak.. The same initialization vector can be used more than one time. This makes WEP VERY vulnerable to collision based attacks which the cruddy stateful packet firewall included in those things will not detect. With an IV of 24 bits that means 16.7 million combos.. That is hardly enough to protect your bank account online. With WEP, Master Keys instead of temp keys are used.. This gives usually months and months to work on hacking your connection... With WPA The length of the initialization vector goes up to 48.. This means there is now OVER 500 TRILLION password possibilities. WPA uses a better encryption methodology, only temporary keys are used, and message intregrity tracking is added. My professional opinion? WEP should be done away with as a standard.... The common user if they lock down their wireless is only using WEP with a 10 digit key.. It is not that hard to figure out your cell phone # with area code or your home number or reverse it, add area code to rear, reverse that..etc... But... Why guess at it yourself..There are plenty of tools available at no cost that are used for a Brute-Force attack running millions of possibilities per hour with multiple attempts and your SPI built-in firewall will never stop the attempt.. Ha$h has smoked the ease of hacking.... SO what do you do if you want to have a true secure wireless connection? Deny remote access to your router, change the admin password to a password using a combination of uppercase letters, lowercase letters, numbers AND symbols that is AT LEAST 8 characters long (My standard is 16 -20 characters using the above complexity requirements. Disable any remote access features to the wireless routers, Turn off SSID Broadcast, use WPA as your wireless security standard, AND use MAC address filtering. When you purchased your wireless network card or adaptor, it came with a hardware address (kind of like a long house address) embedded in the firmware.... That MAC address is broadcasted in the header of your signal. Adding MAC address (no.. no relationship to Apple computers at all..)filtering and your MAC address tells the router two things specifically about your computer/laptop... It says hey... You must know the WPA key assigned the the router and ALSO says.. Your MAC address must match the one I am remembering in my memory.. If EITHER of these are not correct.. you have no access to this router... That is a secure private network.. The only other options are to have Intrusion Detection/Prevention set up by a professional and have that monitored... (The average home user will not want to spend this $$$ as it is expensive.. I pay $1300 a year just for signature updates from Cisco for my IPS services... Not to mention the $7000 module cost.. You may think it is a pain to do all of this.. Actually... you can have this done yourself my googling things like "how to set up WPA on linksys router" (do not use the passwords in the example people) and "How to set up mac address filtering on my linksys router".. And don't bother calling these fly by night "pc repair vendors" in Wilmington including the ones at large businesses... While there opinion may be "No you don't need that much security for your house.." But what I recommend IS NOT THAT MUCH SECURITY... And I can have a linux laptop up and ready in a few hours that would bust that false claim... Why go through this much trouble? Because formatting a hard drive and deleting or hiding that secret file with a different file extension does not EVER get rid of the information on your hard drive. The ONLY way to get rid of the information on your hard drive is to Boot and Nuke or simply write 1s and 0s over the surfaces of your hard drive multiple, multiple times... I am sure you have emails, bank account information, secrets, tax returns, passwords.. Guys.. some of you have those naughty naughty pics... And maybe you think that it cannot be accessed or touched.. Maybe you think using your child’s middle name and a portion of your phone number is secure..Maybe you think that the removal of temporary files/cookies is keeping you safe.. How about that "free" antivirus you have installed (in technology.. you get what you pay for..) Well.. what about the keylogger installed on your PC that records every key you type because the infected email from a friends was a trusted source and you didn't now it...? Enough rambling.. My point.. Is the majority of you have personal information and data that is at an extremely high risk of being compromised and all you have to do to fix it is google for what I have told you to google for.. It is not fail proof, it is not completely safe But it will keep you a heck of allot safer than you are right now.... Should you be worried? Yes… Should you immediately do something to lock down your wireless at your home and especially your business… YES. The time it took you to read this and to lock down your router is less than 1% of the time it will take to get your identity back should a crook or thief ever steal it..

An article that is years overdue.

Wow, wardriving? Net stumbler? Really? Wardriving has been around for years. This is nothing new and I'm surprised that there is just now an article about it, as if it's a new thing. Something that was not noted here is that many wardrivers will mark areas with an open signal to let others know where to go. Find a weird marking or symbol outside of your residence, made with chalk?? You need to lock down your router immmediately. It's a marker, an indicator to let other Wardrivers know that there is an unlocked router there. If you don't like remembering passwords, then just hide your SSID. That's the identifier that your router sends out when computers are looking for a network. Change it to something that you can easily remember and then specifiy it in the wireless settings for each computer that uses your network. The network becomes invisible to the average wardriver out there who is using a program such as net stumbler. Some people do wardriving for fun. Others do it for far more malicious reasons. Imagine someone connecting to your network to use stolen identities online. All of that information would come back to YOUR network and the person would be extremely difficult to trace.

stealing wifi

Ive been mooching free wifi for years until my neighbor caught me. It's true how if you wanted to you could screw up someone's life by jumping on their connection. I just did it so I could download movies. He caught me because HBO sent him a warning letter threatening to sue him for stealing copyright material that I got while on his connection. I've since learned my lesson.