All Wi-Fi security is not equal. New attack methods could enable hackers to access older networks in just a few minutes.
Most people follow the mantra that if it ain't broke, you shouldn't fix it.
But when it comes to security matters, sticking with the WEP technology found in older Wi-Fi routers could prove costly. WEP encryption has been superseded by a stronger, harder-to-crack wireless security standard known as WPA. If your router offers the choice of WEP or WPA, the latter is the one to go for.
Nevertheless, a significant two-fifths of businesses – and an even higher percentage of home users – still use WEP. The problem here isn't simply that someone can piggyback your wireless network, using your bandwidth to get online to check their email or download hefty files at no cost to themselves. A vulnerable network with insufficient encryption can be hacked and valuable data leeched from it.
In the US, the biggest known data breach of 2006 enabled hackers to gain access to 94 million bank card numbers. Hackers were able to acquire these having hacked the wireless network of retailer TJX – a network secured using WEP.
But the latest proof-of-concept breach demonstrates even more clearly why it's time to trade in WEP for stronger WPA encryption – or the updated version, WPA2.
Security researcher Vivek Ramachandran has developed what's known as the Caffè Latte technique – so-called because the hack enables the attacker to break through WEP protection on a client machine such as a laptop in the time it takes the unsuspecting owner to drink a cup of coffee.
In the past, hackers have focused on using WEP flaws to break into wireless networks. This process involves driving to a hotspot and cracking the WEP key to gain direct access to the network. Ramachandran's technique instead targets attached devices, tricking the WEP-enabled client into thinking that it's logging on to a familiar network.
The technique could give crooks the keys to any wireless network to which the laptop or device had access, including that of a hacked laptop owner's company.
"With the discovery of our attack, every employee of an organisation is the target of an attack," says Ramachandran.
NEXT PAGE: how to defeat such attacks > >
To ensure you're safeguarded from such vulnerabilities, upgrade your Wi-Fi security – there may be an option to update the firmware for your router to WPA at the maker's website. If not, ensure the WEP encryption it uses is the lengthiest 128bit string variety – the longer the string, the longer the sequence will take to crack.
WEP and WPA can't co-exist on a network, so ensure you upgrade all your wireless devices to at least WPA. Both this and WPA2 use dynamically updating encryption keys, which makes it far harder for hackers to crack them. Some routers support both WPA and WPA2, so you'll be able to mix and match WPA router security if not all support the latter version.
The simple step of changing the default network name and password from the one the manufacturer set as the default can also help deter casual Wi-Fi piggybackers and lazy hackers.
Encrypting outgoing mail messages and other sensitive data is another good idea. Use a product such as Steganos Safe One to do so. This way, should someone find their way on to your Wi-Fi connection, they won't simply be able to intercept whatever's passing through it and have a good peek.