Wifi Attacks Succeed Against All:WEP/WPA

When do Wifi attacks Succeed?

It depends on your setup

450x270

 

Some basics:

First of all, change your default admin password (since default admin passwords are on the Internet so that users can manage their WiFi Access points).

New access points may look like this:

sub_cat_linksys_wireless-n

and the support page shows how to access the WiFi router http://www.linksys.com/us/support-article?articleNum=135554

{ You will be asked for your log-in details.  The default log-in is a blank field for the user name and “admin” for password.  If you have set up a User name and Password for your Linksys router before, enter your personalized credentials instead.  }

Notice if you do not change the default password (admin) then any hacker can access the machine and modify the setup.

 

2nd  make sure you set up an encrypted or “secure” wireless network.  There are many  ways to do this, and since there are many WiFi devices these are truly too many to discuss in one blog post(this one is a Linksys router):

wireless_security

here you can choose the technology /encryption to use.

 

WEP(Wired Equivalent Privacy ) is bad – it can be easily hacked using some tools well-known in the pentesting  community.

WPA/WPA2 is better, but even this can be hacked.

It depends on the size and complexity of… your password.

The longer your password the better.

There are many websites that will teach how to hack WPA2:

http://www.hacking-tutorial.com/hacking-tutorial/wifi-hacking-cracking-wpa2-password/

wpa2wpsenabledhack

 

There are also many good reasons to make sure your WiFi  is up to snuff…

There are many compliance reasons to check your wifi setups (HIPAA and PCI) and most other governance structures recommend testing.

the following image is from PCI section 11.1

wirelessaccesspointtesting

 

We are  Fixvirus.com and we perform cyber tests – contact Usfixvirussystemengineering