Wireless Networks Open to Attack
·
Did you just install a new
Wireless Network in you home or business?
·
Do you surf the internet at
WiFi Hotspots around town?
·
Your computer may be open to
attack from strangers both at home and around town!!
Up until recently, the term “War Driving”
was the latest wireless hacking method, which consisted of driving a car around
business areas, and using Laptops and Wireless PC Cards to detect Wireless
Access Points (WAPs).
It was no surprise that they could detect
many unsecured wireless networks. Based
on U.S. anecdotal evidence, 60 - 80% of Wireless LAN (WLAN) owners hadn't even
taken the most basic steps to secure them, making them as easy to break into as
buying a Wireless PC Card and downloading free software. Some of these locations could have been WiFi
Hotspots where it is common to have no security at all, where customers are
invited to jump onto their networks.
While the lack of security for a free WiFi Hotspot may be intentional,
it still poses a threat to the people using them if their computers are not
protected.
Then the “War Driving” concept went one step
further - “War Flying”. A group from
the Bay Area Wireless Users Group flew over San Diego in a light aircraft at
500 meters, and detected 437 access points within a short period of time. Of these, 102 (23%) had WEP enabled and 258
(59%) hadn't changed the default SSID.
The SSID is broadcast every few seconds, making it very easy to scan for
known names.
It is not uncommon to pick up someone else’s’
wireless network from a neighboring business or home since the signal may be
broadcast at distances of several hundred feet. You may well be within each other’s Wireless Access Point radiation pattern. And if their Wireless Access Point doesn't have WEP enabled, it
will be happy to assign any of your wireless-equipped users with an IP Address
and Default Gateway. If you are a good
neighbor, you should make an attempt to make them aware of their lack of wireless
security.
So, have you implemented even the most basic
security measures on your WLAN?
·
At
a minimum, are you running in Infrastructure-Mode rather than Ad-Hoc mode, so
all clients must communicate via an Access Point?
·
Have
you changed the default Channel?
·
Have
you changed the default password for your WAP/Router?
·
Have
you changed the default SSID name
·
Are
you broadcasting your SSID?
·
Have
you enabled WEP?
·
Are
you running a secure protocol with 128-bit encryption, such as IPSec?
·
Do
you use a hardware or software Firewall?
Be aware that for all the benefits of WLANs,
it's a potential entry point into your network, and like an Internet
connection, it needs to be secured. As
wireless networking grows in popularity and is extended from Notebooks to PDAs
and other portable devices, the level of the threat will grow. Unfortunately, there is a lax attitude
towards implementing even the most basic security measures on Wireless
Networks.
As most people have heard of hackers
breaking into the seemingly impenetrable and expensive networks of large Corporations
and even the Government, if you have your own wireless network, don’t be lax
about securing it. Either learn how to
do it yourself or hire a professional.
And even if you are at the local WiFi Hot
Spot with your Laptop and Wireless PC Card, ensure you protect your computer
with a personal firewall. Not to make
you paranoid, but if your laptop is not protected, how do you know that the
person at the next table isn’t sharing files on your computer. You certainly wouldn’t want anyone storing
illegal content on your computer such as child pornography. While I haven’t personally known anyone this
has happened to, it is a very real threat!!
If you need help in securing your Wireless
Network, call Leeward Computer Repair at (808) 386-8026 for an onsite visit.
