Think Your WPA-Protected Wifi Is Secure? Think again!

Author	All Replies
urbanracer34 join:2010-01-06 Saskatoon, SK	Think Your WPA-Protected Wifi Is Secure? Think again! A new piece of Wifi cracking software has been released. It is called the "Reaver" and it's a nasty piece of work. It's not Wifi Protected Access that is the problem, it's Wifi Protected Setup that is the problem. It's a simple 8-digit numeric code on your router that enables ease-of-setup while leaving a big gaping hole in your router if someone is knowledgeable, has a Linux box kicking around, and has access to the open source Reaver software (which everyone does now). As soon as your WPA pin is compromised and the router received the request to join, the router also sends your PRE-SHARED-KEY to the device, giving Reaver and your network a nice hole for hackers, pedos and other bad people to use your network for malicious purposes. Tons of devices are vulnerable to this hack, CISCO and LINKSYS devices even MORE so, quote below from Ars: Having demonstrated the insecurity of WPS, I went into the Linksys' administrative interface and turned WPS off. Then, I relaunched Reaver, figuring that surely setting the router to manual configuration would block the attacks at the door. But apparently Reaver didn't get the memo, and the Linksys' WPS interface still responded to its queries—once again coughing up the password and SSID. Thank God I moved to Apple networking. Sources: »www.makeuseof.com/tag/wpaprotect···-reaver/ »arstechnica.com/business/news/20···aver.ars OT: Yes it has been posted in security already, but everyone that uses Wifi should know about this vulnerability. -- If I post in a forum such as AT&T or Verizon, it's usually with a good reason. I lurk in these sections all the time so I know my stuff. I am also CompTIA A+ Certified.
	to forum · permalink · 2012-01-08 18:06:32 ·

No_Strings Premium,Mod join:2001-11-22 The OC kudos:6 Host: Wireless Networking All Things Unix Cox HSI Efficient Southwest Chat	Has anyone compiled a list of vulnerable devices? The whitepaper says to turn off WPS. I never turned it on in any device as I always thought it was a potential vulnerability, but the other link's author said he was able to intercept the PIN even with WPS off.
	to forum · permalink · 2012-01-08 18:43:21 ·
Anav Sarcastic Llama? Naw, Just Acerbic Premium join:2001-07-16 Dartmouth, NS kudos:3	reply to urbanracer34 Then why use an inflammatory innaccurate title........ WPS issues are well covered here who would have thunk it, in the wireless security forum...... »What are you doing regarding the Reaver Hack »Time to disable WPS on most routers -- Ain't nuthin but the blues! "Albert Collins". Leave your troubles at the door! "Pepe Peregil" De Sevilla. Just Don't Wifi without WPA, "Yul Brenner" LlamaWorks Equipment
	to forum · permalink · 2012-01-08 18:57:11 ·
sbconslt join:2009-07-28 Los Angeles, CA	reply to No_Strings One or more of the other going threads have a link to a google docs spreadsheet where people are tracking the details about affected models. -- Scott Brown Consulting
	to forum · permalink · 2012-01-09 01:23:43 ·
Anav Sarcastic Llama? Naw, Just Acerbic Premium join:2001-07-16 Dartmouth, NS kudos:3	reply to urbanracer34 Yes, also found in the wireless security forum. »WPS Brute Force: A public google spreadsheet .... »First WPS hacking tool released
	to forum · permalink · 2012-01-09 08:59:42 ·
DaMaGeINC The Lan Man Premium join:2002-06-08 Greenville, SC kudos:2	reply to urbanracer34 Why do you assume everyone that hacks is up to no good? I simply want free internet access. I could care less whats on your network.. -- Hating ignorance since 1984.
	to forum · permalink · 2012-01-11 17:41:04 ·
No_Strings Premium,Mod join:2001-11-22 The OC kudos:6	Unauthorized access, particularly by way of defeating security measures is illegal in many jurisdictions. By definition, no good.
	to forum · permalink · 2012-01-11 18:03:12 ·
NetFixer Freedom is NOT free Premium join:2004-06-24 The 'Boro Reviews: ·Vonage ·Cingular Wireless ·Comcast ·AT&T Southeast	reply to DaMaGeINC said by DaMaGeINC: Why do you assume everyone that hacks is up to no good? I simply want free internet access. I could care less whats on your network.. Free for you, but costly for those from whom you are stealing the service. Besides the normal static per month charges that most of us actually pay for internet access, many ISPs have usage caps with either additional charges for going over the cap, or with some ISPs, your service can be disconnected if you go over the cap. Even if your leeching does not push a neighbor over a bandwidth cap, your added usage still can (and probably does) impact their ability to fully utilize the connection that they pay for. You must be the most popular guy in your neighborhood. -- History does not long entrust the care of freedom to the weak or the timid. -- Dwight D. Eisenhower
	to forum · permalink · 2012-01-13 18:55:08 ·
DaMaGeINC The Lan Man Premium join:2002-06-08 Greenville, SC kudos:2	said by NetFixer: You must be the most popular guy in your neighborhood. Ya, its a thankless job... thats for sure... -- Hating ignorance since 1984.
	to forum · permalink · 2012-01-14 08:24:43 ·

Broadband Tech > Wireless Networking > Think Your WPA-Protected Wifi Is Secure? Think again!