TCS - Wireless Networking Not as Secure as You May Think!

Wireless Networking
Not as Secure as You May Think!

by Ira Wilsker
Golden Triangle PC Club
From the June 2004 issue of the I/O Port Newsletter

About two years ago, following a private meeting with some Beaumont business people, I mentioned that most of the wireless networks being frequently installed in their homes and businesses were insecure. I explained how an electronic intruder could easily utilize their wireless networks to commit acts as benign as to simply get free internet access or as dangerous as identity theft and espionage. While there were some present who appreciated the fact that their networks were vulnerable, and stated their intentions to secure their systems, some others present scoffed at the thought, and denied that the risks I described were real. After all, they were told by their hardware dealer or geek employee that all of the major retail brands of wireless networks had built in encryption and security, which I agreed is true. The problem is that many business installations of wireless networks, and almost all wireless home installations, are configured with either no significant security settings, or use the default passwords and encryption schemes. This is dangerous because they use their networks with false but blissful ignorance that they are safe from intrusion. The doubters were shortly enlightened when I drove my van around downtown with my notebook computer on the dashboard, an inexpensive 802.11b wireless card installed, and running a readily available and popular hacker utility. To the chagrin of the doubters, I was able to pick up most of their wireless networks from the street, recording their brand of network, unique addresses, and other information about their networks. Since proper encryption was not enabled, and other security methods were not utilized, it would have been an easy next step to access their networks and ultimately their internal data.

Almost all of these networks are vulnerable, and the vulnerable networks already have been compromised, or will almost certainly be compromised, unless secured. One of the goals that the National Cyber Security Day encouraged in April was to secure our computers from hackers and terrorists, and the Department of Homeland Security has identified this as one of the major vulnerabilities of our cyber infrastructure. There is too much proprietary and private personal information available for illicit access, and there are also many who will eagerly access this information either as a challenge or for nefarious purposes. This vulnerability has been widely known for several years, and has created an underground library of illicit hotspots where private networks can be accessed. These listings evolved from the primitive but effective marking method known as war chalking, where hobbyists and hackers literally wrote on walls and sidewalks with chalk, labeling the wireless access available at those locations. This is not the same as the thousands of legitimate hotspots available to the public, either for free or for a fee.

Unknown to me until recently, a local security expert, Joseph Sorensen, recently drove around town through some residential neighborhoods and commercial areas, using his notebook computer, wireless card, and the same hacker software that I used, and logged the wireless networks he picked up. He found over 300 such networks in a matter of minutes, only about 20 percent of which were secured, leaving about 80 percent vulnerable. Many of the vulnerable networks he detected, just as I found two years ago, were major name brand systems that had only the default security settings, leaving them open and vulnerable. Another vulnerability, almost non-existent when I did my search, but which is now becoming very common are the wireless networks being sold by our local broadband sellers as part of a broadband internet package. Since almost all of these users use the default settings at installation, it would be easy for their neighbors to access their broadband internet connections at a minimum, or at worst, all of the information on their computers.

Another wireless vulnerability well known to the hacker community, but almost unknown to the users, are the security risks possible at the thousands of public hotspots, commonly in libraries, bookstores, airports, hotels, coffee shops, and other locations. Innocent users of these hotspots may not be aware that their computers may be accessed by unauthorized users. In a recent article by John Desmond, Countering Lack of Security in Wi-Fi Hot Spots published by eSecurity Planet, the author describes the risks of using these popular hot spots. Public hotspots are not secure, not even turned on with Wired Equivalent Privacy (WEP), the 1999-era security standard of 802.11 Wi-Fi communications, making them a risk for any business professional to use, says Mike Disabato, senior analyst with the Burton Group.

While I have been preaching security in this column since its inception several years ago, many are still unaware of the risks and possible solutions. This has created a cottage industry of small businesses specializing in securing systems, and other related services. Locally, one such company is Armored Wire, which at present is offering a free security analysis. If you would like to find out if your wireless network is secure, call (409) 861-4545 and Joseph Sorensen may be able to tell you if your network is one of the unsecured networks that he can detect outside of your home or business, and is therefore vulnerable.

If you have a wireless vulnerability, it is not a question of if you will be attacked, but it is likely that you will be attacked, and probably have already been compromised.



For more information on the Tulsa Computer Society click here



Tulsa Computer Society 6/01/2004
Don Singleton, President