deickos

Unsecured network

15 posts in this topic

what are the dangers on having a wireless unsecured -

ok we all know it is dangerous it is grave, but what exactly can happen ?

0

Share this post


Link to post
Share on other sites

people can arp posion/packet filter you, people can use your wifi for free, too many people can connect and mabey crash your router/slow down network.

edit: people can get you in trouble with the cops if they do illegial stuff with your internet as the ip would come back to your house

Edited by dinscurge
0

Share this post


Link to post
Share on other sites
people can arp posion/packet filter you, people can use your wifi for free, too many people can connect and mabey crash your router/slow down network.

edit: people can get you in trouble with the cops if they do illegial stuff with your internet as the ip would come back to your house

can they attack my computer - and how

0

Share this post


Link to post
Share on other sites

if you offer a service such as telnet, windows shares/ftp they could probably get into your computer if they really wanted for ftp/windows chares they would only be able to acces the folders/files you offer for sharing/ftp, if you offer telnet the could get controll of your cpu

0

Share this post


Link to post
Share on other sites
if you offer a service such as telnet, windows shares/ftp they could probably get into your computer if they really wanted for ftp/windows chares they would only be able to acces the folders/files you offer for sharing/ftp, if you offer telnet the could get controll of your cpu

how can i check what is offered?

0

Share this post


Link to post
Share on other sites
if you offer a service such as telnet, windows shares/ftp they could probably get into your computer if they really wanted for ftp/windows chares they would only be able to acces the folders/files you offer for sharing/ftp, if you offer telnet the could get controll of your cpu

how can i check what is offered?

nmap or netstat

0

Share this post


Link to post
Share on other sites
what are the dangers on having a wireless unsecured -

ok we all know it is dangerous it is grave, but what exactly can happen ?

Your biggest concerns are slow internet connection, man-in-the-middle (MITM) attacks, and scapegoating. If they use your WiFI for file-sharing or something, then your Internet speed drops to a crawl. MITM attacks can occur when the attacker is on your internal network. This may involve intercepting your communications or even pretending to be the site your sending login credentials to. Finally, scapegoating is my term for perps committing crimes using your connection. Many people doing something questionable or wanting anonymity from government look for open (or crackable) WiFi networks. The authorities may then see child pornography, illegal software sharing, threats against White House, or whatever they do coming from your network. What will your defense be? I didn't know?

That's a chance you have to take with unsecured WiFi. It's better to just secure your wireless network so you don't have to take a chance. Even WEP is better than nothing, as some cautious opportunists look for open wifi to reduce their own liability. I recommend WPA2 w/ AES encryption. If you can't use that, try to use at least regular WPA. These are a one-time setup, mostly transparent afterwards, and are hence very convenient. Of course, you could just leave it open so I have a bit more freedom when I'm in your area. B)

0

Share this post


Link to post
Share on other sites
I recommend WPA2 w/ AES encryption. If you can't use that, try to use at least regular WPA

just wanted to add, wpa with a GOOD password. Just because you're using wpa/wpa2 doesnt mean that a dictionary attack wont work

0

Share this post


Link to post
Share on other sites

All of the issues mentioned above can hold true. One that I am surprised anyone has mentioned are companies that have simple WAP or unsecure networks set-up. The risks to a company can include criminals stealing your financial data, customer data or worse healthcare information on your clients. For example, I was doing an audit not too long ago for a doctor’s office and was surprised they were running a WAP enabled wifi network. The days of HIPPA or SOX compliance and not having to provide notice that your networks have been breached are over. The costs associated with a network breach can be very costly.

0

Share this post


Link to post
Share on other sites
WAP enabled wifi network

Did you mean WEP?

I totally agree though. I was staying somewhere without an Internet connection once and i wanted to get online and check some things and i happened to spot a wep network across the street. A few minutes later i was in and connected but couldnt get online and i was like "wtf?". I did a port scan and found about 100 hosts. It was a freaking company network! Ironically it was a security company (physical security, obviously not computer security).

Luckily i wasnt interested in some random company so just moved on to the next wep network, but someone malicious could of had a lot of fun

0

Share this post


Link to post
Share on other sites
WAP enabled wifi network

Ironically it was a security company (physical security, obviously not computer security).

Good example. I'll add though that even security focused companies can have major lapses. The first example coming to mind are antivirus companies that wait up to a year to begin patching vulnerabilities in their own products (*cough* norman *cough*). Others are companies that develop security products but don't have trained security engineers doing it. Developers that are great a producing software often aren't as great at producing high assurance software. Security companies employ human beings, sometimes under- paid/motivated/trained ones, and can be just as vulnerable. (the irony is still funny though)

About the network issue, I'm with you guys they need to fix it. For my stuff, I'm more concerned about them getting Internet access than intranet access. There are many black hats who cruise around looking for WiFi to ensure their misdeeds come back on someone else. This is way better than an anonymous proxy service, which may be run by or cooperate with law enforcement. They typically use store-bought laptops paid for with cash and/or spoofed MAC addresses. Open/insecure WiFi is better for them than public libraries because there's no logging, cameras, etc. in range of many WiFI networks, esp. if you have a cantenna. Pringles, anyone? ;)

0

Share this post


Link to post
Share on other sites

The greatest threat from an unsecure network isn't that people could steal your info, or all that other crap that we know how to do but no one else.

The greatest threat is that some idiot also joins in on the same network as you, and gets infected with some malware. It's then much easier for that malware to spread to you. You probably configured your firewall to trust the local network, which leaves the computer much more open to vulnerabilities.

Edited by Seal
0

Share this post


Link to post
Share on other sites
The greatest threat from an unsecure network isn't that people could steal your info, or all that other crap that we know how to do but no one else.

The greatest threat is that some idiot also joins in on the same network as you, and gets infected with some malware. It's then much easier for that malware to spread to you. You probably configured your firewall to trust the local network, which leaves the computer much more open to vulnerabilities.

I wouldn't say thats a bigger threat. I would be much more worried about illegal activities on my network that would get traced back to me. Of course this depends on the type of malware that could spread.

0

Share this post


Link to post
Share on other sites

They could sit outside your house, and use nmap or some type of home brew script to say, port scan, brute force/crawl ftp, web scan for bugs and stuff like that....

Basic reconnaissance before attempting to compromise a computers security.

You might say, well hey buddy thats not so bad, that all can be dealt with.

But the worst case scenario?

They do this on *.nasa.gov or the NSA machines that are on the net.

What stops even DoD?

Then there gonna be on your ass so bad you will wish that you never had been born.

Ever hear of ARP Poisoning?

They could use a script to tell your router, that they have your IP on the subnet.

Then tell your computer, that they are the router.. What does this do?

Allow them to fully control and route your outgoing connection.

Sniffing your passwords or defeating SSL and sniffing your online banking information would not be hard for a hacker worth his salt, or even a novice computer enthusiast.

As there are tools ready and available for download to do these nasty tricks on the web.

Secure your networks!

Regards.

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now