Wifi Security

Discussion
DanthEx Avatar
DanthEx GB Staff *****

Post by DanthEx on Aug 27, 2017 9:18:53 GMT -7




Wifi is something we use in everyday life, from home, work, a restaurant, to the coffee shop down the street. But I wanted to speak a little bit about our home Wifi connection. Did you know that approximately 80% of routers and Wifi broadcasts are insecure? This can be due to multiple reasons, such as; Using a weak password, using a password that's easily guessable(such as your phone number), not using the correct Wifi protection, leaving WPS active when not in use, and the most common problem that is leaving your router credentials set to default(usually after purchasing a Range Extender or a Router from the store).

So the question is, what can be done? First off, when your ISP(Internet Service Provider) initially installed your services at your home, they should have given you a 12 digit numeric passcode along with your SSID(Service Set Identifier, AKA your Wifi name), this should be kept in a safe place and not given out to neighbours, as they're able to reach a 2.4GHz network from a fair distance away (typically a couple of houses down). Don't change your wifi password to the name of your dog, cat, or great uncle. Majority of the time you're causing a massive flaw in your home network security by doing this. A 12 digit numeric password has 8916100400000 combinations available, it's extremely unlikely this will ever get cracked by brute force(comparing a password list to your password).

Second, you want to be sure you're using the correct Wifi protection settings, using WPA(2)-Personal(PSK), is best in today's day and age. Be sure the network is not Open or using WEP. Also, if you're not using the WPS(Wi-Fi Protected Setup) then there is no reason to leave this active, as it just leaves your network open to more vulnerabilities.

Last but not least, If you've recently purchased a range extender or router on your own, be sure to change the default login credentials to something secure, write them down, and store them in a safe place.
GamingLyfe Avatar
GamingLyfe GB Addict ****
Here to game and network with gamers alike, feel free to message me!
megannatasha Avatar
megannatasha GB Addict ****
xxinfectedxx Avatar
xxinfectedxx GB Addict ****

Post by xxinfectedxx on Feb 8, 2019 7:49:08 GMT -7

A great article guide with valuable information. The more we know about cyber security, the greater chance of preventing a cyber attack on our home broadband connection. Thank you for posting this Dan. I'll be sure to change the router's cresdentials to a 12 digit numerical password.
Last edited Feb 8, 2019 7:49:29 GMT -7 by xxinfectedxx
Nergal Avatar
Nergal GB Staff *****

Post by Nergal on Feb 8, 2019 11:12:33 GMT -7

xxinfectedxx Avatar
A great article guide with valuable information. The more we know about cyber security, the greater chance of preventing a cyber attack on our home broadband connection. Thank you for posting this Dan. I'll be sure to change the router's cresdentials to a 12 digit numerical password.
1) Don't broadcast the password scheme you plan on using, you've just created a profile for brute-forcing your own system.
2) Alphanumeric would be better.



xxinfectedxx Avatar
xxinfectedxx GB Addict ****

Post by xxinfectedxx on May 10, 2019 2:26:20 GMT -7

Nergal Avatar
xxinfectedxx Avatar
A great article guide with valuable information. The more we know about cyber security, the greater chance of preventing a cyber attack on our home broadband connection. Thank you for posting this Dan. I'll be sure to change the router's cresdentials to a 12 digit numerical password.
1) Don't broadcast the password scheme you plan on using, you've just created a profile for brute-forcing your own system.
2) Alphanumeric would be better.
Okay, many thanks for the advice. After reading your post, I guess it's time to enhance my routers security. Any other tips? 
Last edited May 10, 2019 2:27:55 GMT -7 by xxinfectedxx
Andrew Avatar
Andrew GB Regular **

Post by Andrew on May 10, 2019 7:31:45 GMT -7

If you have the knowledge and ability to do so, it also would not be a bad idea to isolate your internal network (smart devices [TVs, thermostats, cameras, etc.], computers, laptops, and the like) from a public/guest network. This is just a "nice to have" and not a requirement, of course, but ideally if you want to go the extra mile at home (or work) you can. Say you have MyWifi and MyWifiGuest, you can rest assured that you've separated off your guests who connect that might have snooping or malicious intentions, off on to a separate network (a "subnet")that goes directly to the Internet (would require a direct LAN port on router to the WAN) and they would not have access to your internal network devices.

Other than this optional step, I think covered a great summary of wise things to do with wifi security.
Last edited May 10, 2019 7:34:01 GMT -7 by Andrew
Andrew