Why is WiFi Unsafe?

[CaptainAmerica]

I know that WiFi is often considered unsafe, due to hackers lurking, but I am wondering why specifically hackers are better able to hack a WiFi user or network vs a landline one? Is there something particularly vulnerable about WiFi in and of itself?

Thanks for everyone's input here!

 

[BK_123]

WiFi is only unsafe when you haven't secured you network using a security key which all WiFi routers now ship with it already done for you. The only way a hacker can hack into your network is if you are using WEP encryption for your security which is the weakest and old encryption and is easily able to be hacked whereas WPA & WPA2 are a lot harder as they use better an encryption methods. For added security you can use MAC filtering if your router supports it which majority of them do. It is where you can permit selected devices onto your network using the devices MAC address or you can set it so unknown devices that are not on the filtering list are denied access to the network. If you are using an open WiFi network that uses no security key then you are at more risk like using a coffee shop or hotel but some are configured so that you may have to pay to use it even though it may be open some just let you on through.

 

[Transk53]

I often wonder the same things with the UK based BT Fon network. It uses BT's main network plus Customers (which I used to be) can offer up a slice of their bandwidth so other Fon uses can connect via Wi-Fi. How secure it is in practice though, I have never actually asked the question. I have made sure that my lappy is using WPA2 settings.

 

[iPwn]

IMHO, WiFi is so insecure because it is an openly 'heard' transmission.

Let's say there's a large company with several thousand employees. They most likely have an Intrusion Detection|Protection System (IDS/IPS) on their internal network. These just sit there and analyze traffic to detect breach attempts, among other things. As soon as the 'hacker' plugs into the network (which he would have had to gain access to the building(s), and plug in somewhere), his traffic is under scrutiny and he is more likely to be discovered, several factors permitting.

Now imagine he's sitting in the parking lot with his WiFi antenna set to Promiscuous mode (just listening and capturing data). He can capture (probably encrypted) communications to his hearts content. With a few special tricks, he can capture the encryption key too (it's very easy on WPA2, too). Then, it's just a matter of time before he brute forces that key, probably on a different/dedicated setup at his home. All this while the company has no idea.

It's not always that WiFi encryption/methods are weaker/inferior... It is largely due to the constant availability of an opening, and how incognito attackers can do their company 'footprint'ing.'

There are obviously more factors than just the above, but in a perfect environment where everything you can possibly do is done, that is something you can't just turn off, especially if your wireless network supports a critical business function.

 

[Transk53]

Good reply :thup: A while ago at work, we actually caught someone doing that very thing to company network, at least that was transpired later after the police wanted to speak with us. In this case he was no hacker, just the tools and knowledge to use them. Not sure what the result was, but it go to the criminal courts.

 

[setishock]

I give you an example of why it's not safe. We have a hacker staying here. He's trying to sniff the guests wireless network. He's not real good at it because his IP keeps popping up in my firewall. But he is jamming up the network making it crawl and drop out for some. I have a sandbox on my back up laptop and just for S&G's I'm going to let his probing lead him to that. It's labeled credit card info. Nasty stuff in there. Really nasty.

If he gets in to an unprotected computer and some one uses their credit card online to buy something, he "possibly" could get the numbers

 

[Randy11]

I personally believe it depends on your encryption key and whether you use a strong key that no one can guess. Obviously if you use WPA-2 and your key is really easy to guess or crack then you stand the chance of someone stealing your information. The router too makes a difference if you get and use just your ISP providers router then you stand the chance of it being hacked as they are usually not as good.

 

[Transk53]

I give you an example of why it's not safe. We have a hacker staying here. He's trying to sniff the guests wireless network. He's not real good at it because his IP keeps popping up in my firewall. But he is jamming up the network making it crawl and drop out for some. I have a sandbox on my back up laptop and just for S&G's I'm going to let his probing lead him to that. It's labeled credit card info. Nasty stuff in there. Really nasty.

If he gets in to an unprotected computer and some one uses their credit card online to buy something, he "possibly" could get the numbers

Hope you are making that box smaller..