Security issues for WiFi Laptop users.

This got my attention

C/P
Security researchers have sounded the alarm for wireless Internet users, warning them that their laptop computers are vulnerable to attack by hackers. The flaws could allow thieves to gain access to passwords, bank accounts, and other private information even when the system is not connected to the Internet.


According to David Maynor, senior researcher at network security firm, SecureWorks, and fellow researcher Jon "Johnny Cache" Ellch, the problem is with the software built into wireless-networking hardware that allows it to communicate with a computer's operating system. A criminal exploiting the flaw could send malicious code to an unprotected laptop and gain complete control over it via its Wi-Fi card.

The two presented a video demonstration of how the vulnerability could be exploited on a MacBook by taking advantage of software flaws specific to Apple's
OS X operating system, during the opening day of the Black Hat security conference in Las Vegas. But, they added, similar flaws exist in Microsoft Windows and the
Linux open-source operating system, as well, so the majority of all computers, including desktops, are also susceptible.

"The problem itself isn't really an Apple problem," Maynor told the Associated Press. "This is a systemic problem across the industry."

WiFi Attacks!

To launch an attack exploiting the Wi-Fi driver flaws, a hacker would need to be within the range of a Wi-Fi signal -- normally about 100 feet. That distance, however, is subject to change as wireless technologies significantly extend the reach of a WiFi signal. That could increase the threat from hackers.

Maynor and Ellch refused to provide specific details or conduct a live demonstration of their research for fear it would fall into criminal hands. But, Maynor did say they were able to remotely identify the wireless driver running on a specific computer and drop a "root kit," i.e., hacker software, into the MacBook, which allowed them to create, read, and delete files on the computer.

The test was conducted using third-party wireless hardware rather than the original wireless equipment Apple ships with the laptop. The duo refused to identify the make or model of the wireless device so as not to give potential hackers a heads-up. But, Maynor said, the flaws are so common that he would have little trouble finding a vulnerable computer at any Internet caf�.

Buggy Drivers

According to Maynor, the main problem is that wireless cards are controlled by a mix of several hardware and software developers. These developers are often under a lot of pressure to quickly get their products to market, and do not invest enough time in perfecting their software.

The pair decided to go ahead with the demonstration because of the danger it presents to wireless users, particularly as a connection to the Internet is not necessary for intruders to exploit the flaw. Wireless cards, unless disabled, constantly broadcast their signal to any network in the vicinity and most are configured to automatically connect to any available network. So, any computer with an active wireless card is at risk.

"We want to educate developers and hardware makers about this threat before it becomes a wide-scale issue," Maynor said. "We're not talking about something that people don't know about, but a lot of people don't know the severity."

thanks for the post keltic, a lot of people do not bother to encrypt there wireless connections and are open to hackers, usually they don't worry about it until it is to late, i try not to have any info on my laptop that would make it easy to steal my personal info[bank accounts, ss number etc]better safe than sorry.

Anyone running wifi that is not encrypted is just roadkill.
I use a cantenna to an open server on a hill about a quarter mile away to maintain my anonymity. The story is based on a few rare coincidences on a Mac, its very hard to get into one normally because most Mac people arent total idiots almost every mac I have ever probed while wardriving was encrypted. But 40% of the Windows machines dont use encryption and they are easy to get into, even the ones that use encryption typically use the lowest level that you can break with a sniffer inside of a few hours.

Yes, it's true...Any PC or laptop could be accessed if;

a) A hacker was in range of your Wifi radio.

b) You weren't properly protected.

c) You're at a Public Hotspot

Here's a few simple things you can do, (on Windows anyways);

1) Enable WEP or WPA-PSK encryption; This is only practical when at home or at the office, where you have control over the Wifi environment. Not very practical approach when you using a Public Hotspot, like a cafe or hotel, since it's impratical to try and provide Encryption.
Sure, WEP is not great, but it's better than nothing, and it will defeat the casual hacker.

2) Configure your Wifi radio NOT to roam and grab ANY available Wifi Access Point that happens to be broadcasting. Hackers can use a technique called "HoneyPot", where Wifi users inadvertantly associate to the WRONG AP. Once connected, they can sniff all traffic on AP..
Only define Wifi profiles on your computer for SSIDs that you trust, like Home or Office, etc, and disable "ANY Access Point".
When you get to a public hotspot, YOU ARE AT RISK, since they DONT use encryption. Use SSL(HTTPS), PPTP or IPsec tunnels for all you "business" communications..

2a) Don't use Ad-Hoc mode. This is like an invitation into your computer..

3) Enable the MS firewall or install AlarmZone to protect against entry into your PC or laptop thorugh the Wifi (or Wired) connection when at a Public Hotspot. Many, but not all Hotspots don't filter between wireless users, so they can actually sniff scan and try to get into each other computers..

4) Wifi is not everywhere yet, so Wired connections are still required. In this case, disable the Wifi radio if you're not using it...
You still need a personal firewall on your computer to prevent entry to it over the wired network.

Did I mess anything ? ...Let me know... :D

True ! Keep your ZoneAlarm on HIGH protection !!! :) :)

man you guys just realize wifi isnt safe lol i been wardriving and breaking systems for about 3 years since its conception almost.(only for internet access of course) doesnt really matter what kind of encrpytion you use all can be broken some just take longer than others. best advice ive seen in this thread is DO NOT keep any sensative information on any computer period not just ones with wifi connection because even these arent safe! face it if someone has the time and wants it bad enough your hacked. 90% of breakins are from lamers not hackers just using a simple keylogger or worm/trojan be afraid be very afraid!!!...here is my suggestion for safely well safer use of a pc to do banking...1st never use a wireless conection at all for any CC or bank transaction...2 use firefox as a browser whenever possible...3 dont leave the pc you are doing your banking on online all the time...4 if at all posible have a dedicated connection like dialup or a lone pc on a dsl or cable modem.there are ways for some bugs to spread thru your personal network which you of course trust.another main problem with detection today is piggy backing on a trusted program ie. internet explorer this allows the trojan/worm to operate virtualy undetected so firewalls will not always work and as for virus detectors they are only as good as the definitions they have to compare by.so someone can change a few things about a well known bug and render virus detection useless until the signature is updated to reflect the changes. I personaly know white hats and black hats and have dabbled in both so imo "any pc connected to any form of network is vulnerable to attack"

man you guys just realize wifi isnt safe lol i been wardriving and breaking systems for about 3 years since its conception almost.(only for internet access of course) doesnt really matter what kind of encrpytion you use all can be broken some just take longer than others. best advice ive seen in this thread is DO NOT keep any sensative information on any computer period not just ones with wifi connection because even these arent safe! face it if someone has the time and wants it bad enough your hacked. 90% of breakins are from lamers not hackers just using a simple keylogger or worm/trojan be afraid be very afraid!!!...here is my suggestion for safely well safer use of a pc to do banking...1st never use a wireless conection at all for any CC or bank transaction...2 use firefox as a browser whenever possible...3 dont leave the pc you are doing your banking on online all the time...4 if at all posible have a dedicated connection like dialup or a lone pc on a dsl or cable modem.there are ways for some bugs to spread thru your personal network which you of course trust.another main problem with detection today is piggy backing on a trusted program ie. internet explorer this allows the trojan/worm to operate virtualy undetected so firewalls will not always work and as for virus detectors they are only as good as the definitions they have to compare by.so someone can change a few things about a well known bug and render virus detection useless until the signature is updated to reflect the changes. I personaly know white hats and black hats and have dabbled in both so imo "any pc connected to any form of network is vulnerable to attack"

You say "man you guys just realize wifi isnt safe lol " Waddayoumean Just ?
You've only been doing Wifi for 3 years ?...Where you been Ironeddie ?

Ironeddie nailed it. It only took a week for a laptop I was using to crack my own encrypted network. So anyone with the time can do it. And BTW I found info on doing that far easier than DSS testing. Change your wep bi-weekly. Encrypt and hide all sensitive data on your machine. It's a pain but a good habit. Learn Autohotkeys and store the custom script on a keychain flashdrive and the hard part is done. That way both parts have to be in to get anything out. Plus it raises your geek level to 'pocket protector' status.

you lost me on that one rc3, isn't it a breeze to crack your own encrypted network when you already know the keys?

I think alot of you guys missed the most concerning point of the c/p...it's not the wireless connection that they are saying is vunerable..rather the wireless card inside the computer..which means, encrypting your signal would do no good because the hacker would be hacking the holes in the computer's wi-fi software.which as it says...your computer could be thousands of miles from the nearest hot spot, but if the hacker was within range of your computer, they could hack in....and I'm no expert, and I may be wrong...but I would assume that a firewall would not detect this since they are comunicating with a piece of software designed to connect to a signal..not a port per say..but a comunication linkup that it's designed to do...if that is the case, I would say the only safe bet, is to disable your wireless card when not in use..just my 2 cents

you lost me on that one rc3, isn't it a breeze to crack your own encrypted network when you already know the keys?

hehe! Of course I used a program to grab the first two bits of each two way transmission and over time a pattern of possible WEP's started to be constructed. It found my WEP. Hence the reference to an actual data dual source keyed encryption system. Or what ever it's called nowadays.

It doesn't surprise me that a driver hack on a wifi card via the wifi itself happened. They are so open in default that it's scary.

What I would like to see happen is to implement an user changeable RF output. That way it only goes as far as it needs to. Or a encrypted sleep mode maybe. Or a driver lock down mode (non administator type thing) Turning SSID braodcast off might help you get passed for an easier target also.

The best protection is just turn off your computer when you are not using it. If some one wants to hack your router, no big problem if your pc is off. cant get passwords or acct #s from there. No power, no data transfer.

Hacking a WEP key is a matter of 5 to 10 minutes... Use better WPA, which is far better, but not perfect. Look for updates for your Access Point (i.e. wireless router) if it can't handle WPA. If there isn't an update, change your password very often as it was stated B4.

I think alot of you guys missed the most concerning point of the c/p...it's not the wireless connection that they are saying is vunerable..rather the wireless card inside the computer..which means, encrypting your signal would do no good because the hacker would be hacking the holes in the computer's wi-fi software.which as it says...your computer could be thousands of miles from the nearest hot spot, but if the hacker was within range of your computer, they could hack in....and I'm no expert, and I may be wrong...but I would assume that a firewall would not detect this since they are comunicating with a piece of software designed to connect to a signal..not a port per say..but a comunication linkup that it's designed to do...if that is the case, I would say the only safe bet, is to disable your wireless card when not in use..just my 2 cents

You're right. The original post has nothing to do with routers, networks, or encryption. It's about hacking into any computer with an operating wi-fi card, whether or not it's connected to a network. Your last point was on target. Disable your wi-fi card if you're not using it to render this specific attack powerless.

correct me if im wrong I might be in the wrong forum and i might be wrong about my thoughts , DONT WE ALL NEED THE SAME NEW BIN ? just different files for each stb???????

correct me if im wrong I might be in the wrong forum and i might be wrong about my thoughts , DONT WE ALL NEED THE SAME NEW BIN ? just different files for each stb???????


well yes you need corrected... first this isnt the fta discussion forum and your post had absolutely nothing to do with this thread at all