Wifi Security

Discussion
DanthEx Avatar
DanthEx GB Staff *****

Post by DanthEx on Aug 27, 2017 9:18:53 GMT -7




Wifi is something we use in everyday life, from home, work, a restaurant, to the coffee shop down the street. But I wanted to speak a little bit about our home Wifi connection. Did you know that approximately 80% of routers and Wifi broadcasts are insecure? This can be due to multiple reasons, such as; Using a weak password, using a password that's easily guessable(such as your phone number), not using the correct Wifi protection, leaving WPS active when not in use, and the most common problem that is leaving your router credentials set to default(usually after purchasing a Range Extender or a Router from the store).

So the question is, what can be done? First off, when your ISP(Internet Service Provider) initially installed your services at your home, they should have given you a 12 digit numeric passcode along with your SSID(Service Set Identifier, AKA your Wifi name), this should be kept in a safe place and not given out to neighbors, as they're able to reach a 2.4GHz network from a fair distance away (typically a couple of houses down). Don't change your wifi password to the name of your dog, cat, or great uncle. Majority of the time you're causing a massive flaw in your home network security by doing this. A 12 digit numeric password has 8916100400000 combinations available, it's extremely unlikely this will ever get cracked by brute force(comparing a password list to your password).

Second, you want to be sure you're using the correct Wifi protection settings, using WPA(2)-Personal(PSK), is best in today's day and age. Be sure the network is not Open or using WEP. Also, if you're not using the WPS(Wi-Fi Protected Setup) then there is no reason to leave this active, as it just leaves your network open to more vulnerabilities.

Last but not least, If you've recently purchased a range extender or router on your own, be sure to change the default login credentials to something secure, write them down, and store them in a safe place.
Last edited May 23, 2019 5:59:43 GMT -7 by DanthEx
GamingLyfe Avatar
GamingLyfe GB Addict ****
Here to game and network with gamers alike, feel free to message me!
megannatasha Avatar
megannatasha GB Addict ****
xxinfectedxx Avatar
xxinfectedxx GB Addict ****

Post by xxinfectedxx on Feb 8, 2019 7:49:08 GMT -7

A great article guide with valuable information. The more we know about cyber security, the greater chance of preventing a cyber attack on our home broadband connection. Thank you for posting this Dan. I'll be sure to change the router's cresdentials to a 12 digit numerical password.
Last edited Feb 8, 2019 7:49:29 GMT -7 by xxinfectedxx
Nergal Avatar
Nergal GB Staff *****

Post by Nergal on Feb 8, 2019 11:12:33 GMT -7

xxinfectedxx Avatar
A great article guide with valuable information. The more we know about cyber security, the greater chance of preventing a cyber attack on our home broadband connection. Thank you for posting this Dan. I'll be sure to change the router's cresdentials to a 12 digit numerical password.
1) Don't broadcast the password scheme you plan on using, you've just created a profile for brute-forcing your own system.
2) Alphanumeric would be better.



xxinfectedxx Avatar
xxinfectedxx GB Addict ****

Post by xxinfectedxx on May 10, 2019 2:26:20 GMT -7

Nergal Avatar
xxinfectedxx Avatar
A great article guide with valuable information. The more we know about cyber security, the greater chance of preventing a cyber attack on our home broadband connection. Thank you for posting this Dan. I'll be sure to change the router's cresdentials to a 12 digit numerical password.
1) Don't broadcast the password scheme you plan on using, you've just created a profile for brute-forcing your own system.
2) Alphanumeric would be better.
Okay, many thanks for the advice. After reading your post, I guess it's time to enhance my routers security. Any other tips? 
Last edited May 10, 2019 2:27:55 GMT -7 by xxinfectedxx
Vu1canF0rce Avatar
Vu1canF0rce GB Gamer ***

Post by Vu1canF0rce on May 10, 2019 7:31:45 GMT -7

If you have the knowledge and ability to do so, it also would not be a bad idea to isolate your internal network (smart devices [TVs, thermostats, cameras, etc.], computers, laptops, and the like) from a public/guest network. This is just a "nice to have" and not a requirement, of course, but ideally if you want to go the extra mile at home (or work) you can. Say you have MyWifi and MyWifiGuest, you can rest assured that you've separated off your guests who connect that might have snooping or malicious intentions, off on to a separate network (a "subnet")that goes directly to the Internet (would require a direct LAN port on router to the WAN) and they would not have access to your internal network devices.

Other than this optional step, I think covered a great summary of wise things to do with wifi security.
Last edited May 10, 2019 7:34:01 GMT -7 by Vu1canF0rce
Andrew
Peach Cactus
braindeadgenius Avatar
braindeadgenius GB Newbie *

Post by braindeadgenius on May 22, 2019 19:05:30 GMT -7

Vu1canF0rce Avatar
If you have the knowledge and ability to do so, it also would not be a bad idea to isolate your internal network (smart devices [TVs, thermostats, cameras, etc.], computers, laptops, and the like) from a public/guest network. This is just a "nice to have" and not a requirement, of course, but ideally if you want to go the extra mile at home (or work) you can. Say you have MyWifi and MyWifiGuest, you can rest assured that you've separated off your guests who connect that might have snooping or malicious intentions, off on to a separate network (a "subnet")that goes directly to the Internet (would require a direct LAN port on router to the WAN) and they would not have access to your internal network devices.

Other than this optional step, I think covered a great summary of wise things to do with wifi security.
I honestly never thought about this for the home network. I'm going to have to check this out and set it up. I'm basically living with randos, and that'd help a lot.
Lord Tuba Blueba Avatar
Lord Tuba Blueba GB Regular **

Post by Lord Tuba Blueba on May 24, 2019 20:51:25 GMT -7

Bitdefender is my life man, It's saved my butt a few times when my phone found it's way on an open network. I use the mobile app on my phone with FREE daily VPN. (I actually upgraded to the full VPN after finding it so useful). I have been thinking on getting the Bitdefender Box but haven't pulled the trigger yet. Anyone here use it before?
megannatasha Avatar
megannatasha GB Addict ****

Post by megannatasha on May 25, 2019 20:12:10 GMT -7

Lord Tuba Blueba Avatar
Bitdefender is my life man, It's saved my butt a few times when my phone found it's way on an open network. I use the mobile app on my phone with FREE daily VPN. (I actually upgraded to the full VPN after finding it so useful). I have been thinking on getting the Bitdefender Box but haven't pulled the trigger yet. Anyone here use it before?
I've used Bitdefender before, yes. I loved it. :P
ash Avatar
ash GB Gamer ***

Post by ash on May 31, 2019 12:04:35 GMT -7

Thanks for the advice. At the moment, our WiFi password is just the random one that came with the router and honestly, I'm too lazy to change it. This is probably good though because it would probably be difficult to crack. It's a shame because if I ever want to reconnect, I have to go all the way to the router to get it

A Forum For Those Looking To Earn Money Online | Redeem PayPal & Giftcards!
Vu1canF0rce Avatar
Vu1canF0rce GB Gamer ***

Post by Vu1canF0rce on Jun 1, 2019 12:21:15 GMT -7

ash Avatar
Thanks for the advice. At the moment, our WiFi password is just the random one that came with the router and honestly, I'm too lazy to change it. This is probably good though because it would probably be difficult to crack. It's a shame because if I ever want to reconnect, I have to go all the way to the router to get it

It's usually fine to use the stock Wifi password on the device, they're usually reasonably random. However, I highly encourage you to make sure that your router's back-end administrative console password is not something stock and simple like "admin" "admin" or "admin" "password". That, at least, I would change because a hacker/cracker could get in and mess up your day.
Andrew
Peach Cactus