Hacking Wi-Fi is much easier than most people think, but the paths to it are grouped around a few common techniques that most hackers use. With a few simple actions, the average user can go a long way in defense against the five most common methods of Wi-Fi hacking, including password cracking, social engineering, WPS attacks, remote access, and rogue access points.
Our video covers everything you need to know, but you can also read the following article for more details on each method. And of course, it's always here if you want to follow the written instructions more than video tutorials.
Method 1: Password Cracking
Password cracking is a tried and tested method of breaking into a Wi-Fi network, relying on the user choosing an incorrect password. While this attack can unfold in many ways, there are generally two ways in which a user can become a victim of this attack.
The first is to lock a target using an insecure encryption type called WEP, rather than the more modern WPA, which is standard on most networks. By using a WEP key, even a sophisticated password can be broken in minutes, which does not make it very effective.
The second way of cracking passwords attacks the more secure WPA method of encryption and includes brute forcing the password. If a hacker hurls devices out of the target network for a few seconds, he can force devices to connect to the network and exchange a sequence of packets called a four-way handshake.
This handshake is enough for a hacker Try to guess a huge list of passwords against the detected handshake. Using the computer's computing power, a hacker can quickly test millions of passwords, breaking bad passwords in minutes or hours. WPA cracking tools are increasingly mature and include Airgeddon, Besside-ng and Aircrack-ng. These tools can be used to capture and crack network passwords from the intercepted handshake.
For the end user, this means that you have to assume that every user can take a four-way handshake from your network. If your password is weak or you use it elsewhere, it could be a cause for concern, depending on how much time an attacker has to spend to brutally force it.
The use of password managers such as LastPass and KeePassX may make it easier to use unique passwords such as passwords, phone numbers, addresses, or anything particularly obvious. Instead, choose longer passwords that are unique and not based on information or interests that you have published.
You can also use tools to determine if someone has joined your network that is not authorized. By downloading the free, cross-platform Fing application to your smartphone, you can scan and take stock of all the networks you're connected to. If a device is attached that should not be, you have the evidence that an unauthorized user is connected and can take action to disable it by changing the password or resetting the router.
There are many reasons why you should not give anyone your work or home Wi-Fi password, and very few reasons why you should if you do not trust them. It's important to remember a few facts about Wi-Fi:
Wi-Fi allows you to communicate directly with devices on your network, such as the Internet. Webcams, desktop computers and other devices that may be wired. If you use the Wi-Fi password, you can try to log in or attack these devices.
The Wi-Fi password allows an attacker to change the information that you or others see on your network when you visit web pages or use the Internet
Once someone is on your network, they can access the router and build a persistent remote backdoor that prevents you from shooting it out, even if you change the password.