IS YOUR WIRELESS CONNECTION SECU

IS YOUR WIRELESS CONNECTION SECURE?

Wireless networking has become extremely popular in the past couple of years. The necessary hardware is available almost anywhere, it is relatively easy to install and configure do party to the fact that in order to reduce the amount of support calls they get, manufacturers of wireless routers try to design them to work straight away out of the box with the minimum of configuration (if not no configuration at all).

However in order to do this, they are by default configured to run insecurely, allowing anyone to connect to them. This means that as soon as you switch the wireless router/ap/gateway on, it is insecure.

Wireless technology offers many benefits. As the saying goes, however, with privilege comes responsibility. A responsibility that is unfortunately much too often ignored by the person implementing it, often your ISP (Internet Service Provider). A wireless network needs to be properly secured as it poses a number of extremely serious risks and dangers if left wide open and exposed, which many users are unaware of.

Why Secure My Wireless Network

If you are thinking right now that you have nothing important on your network and that you have no need to secure your wireless network, I guarantee you that you will reconsider your opinion after reading the next few paragraphs. Consider the following dangers of having an unsecured wireless network.

Bandwidth Parasite

In a "best" case scenario, all the intruder does is freeload on your connection to get online without paying. Maybe just to surf the web, maybe to download pirated music or software. This does not cause any direct harm to the compromised network, but it can slow down Internet or network access for the victim, the legitimate user of the network, if an intruder leeches off his bandwidth. This could mean substantial additional ISP cost for the victim if the ISP meters used bandwidth and charges for actual usage.

Masking Criminal Activity

An unauthorized user (Hacker) could abuse the victim's connection for malicious purposes like hacking, launching a DoS attack, or distributing illegal material. Your ISP assigns an IP address to your connection in your name. Since the intruder will be a part of the private network and sits behind its gateway device, any traffic between him and the Internet will appear to be coming from YOUR IP address!

The ISP has no idea how many computers are behind the gateway, who they belong to, and what they are used for. If the criminal activity is discovered and investigated, the origin of the attack will be traced back to the YOUR broadband account. It is a pretty safe bet that nobody wants to be accused of and go to jail for distributing child pornography or hacking into restricted company or government networks (just to mention a few examples) if the crime was in reality committed by a hacker from behind an innocent victim's network. Reviewing ISP's Terms of Service usually reveals a clause that not only allows the ISP to reveal customer information to the authorities to assist with legitimate criminal investigations, but also holds the customer responsible for any activities the connection is (ab)used for.

Access to YOUR private data

A wireless network is also a direct backdoor into your private network - literally. Instead of hacking in from the internet, the intruder connects directly to the network on the private side of the gateway device, completely bypassing any hardware firewall between the your network and the broadband modem.

Most people assume that since they are behind a gateway device with a built-in firewall their private network is safe, hence letting down their guard, sharing drives, and being generally careless. The intruder can completely take advantage of this by snooping around undisturbed and getting access to confidential data. This could be in form of personal information such as financial data, tax records, wills, and more that can be abused for identity theft for example, or in form of work-related information such as confidential specs, development information, trade secrets, and more that the victim has brought home from the office. By employing a sniffer an intruder can even sniff email or FTP user names and passwords because they are usually transmitted in clear text, and use that information to gain unauthorized access to bank accounts, email accounts or web servers without the victim's knowledge.

In addition, a wireless network could also be an indirect backdoor into a corporate network. An intruder can specifically target an employee of a company whose confidential information is valuable to him for monetary or competitive reasons. If that employee establishes a connection either permanently from his gateway or from a machine behind his gateway to the company network, the intruder can then piggyback on the connection and gain unauthorized access to company resources, a serious security breach and every network administrator's nightmare.

By now the danger should be pretty clear: Unsecured wireless networks are unacceptable due to the extremely high risks involved. Yet there are countless unsecured wireless networks out there. A drive around a residential neighborhood covering just a few blocks revealed over 30 wireless networks, 20 of them wide open and insecure. "A signal enhancer available at your local RadioShack can give someone access from as far as 50 miles away," said Drew Carter, product manager for strategic opportunities at security software maker McAfee. "It's not just your neighbors that you need to worry about anymore."

What is even scarier is that it does not take any skill to discover and gain unauthorized access to wireless networks. One does not have to be a programmer, Linux expert, or network specialist. All it takes is a laptop with a wireless network card, and some software (also available for Windows) that can be easily downloaded for free from the Internet. Armed with these basic tools anybody can drive around, detect open wireless networks, and connect to them. With a Linux machine, additional software, some advanced knowledge, and some time and patience it is even possible to break into wireless networks that use encryption.

So if you currently have a wireless network or are planning on implementing one in the future contact us and we will be glad to set up and secure your wireless network at a reasonable rate.