|
Any clue how my home network was hacked
|
|
|
Mez
AfterDawn Addict
|
9. July 2010 @ 11:37 |
Link to this message
|
About a month ago I was experiencing REAL slower than normal internet response. I called up my ISP they checked the latency of the modem and it was good. They passed me on to linksys for my router. They told me my firmware was out of date. I complained that wouldn't drop 90% of my performance in 10 min. So I tried to login but I couldn't even though I cut and pasted to the router then printed the ID and password. User support would help me for $50. I told them I could buy a new one for less and that was that. The response became better but never what it should have been. I was thinking that should have a resent button in passing. Then this week it got bad but not real bad but enough to google my router and reset. I discovered it did have one and checked it out. I found it and reset. Then while trying to figure out how to set up security I was kicked out and couldn't log back in. I got the message and that didn't happen again. I upped the WEP from the lowest setting to the highest. My hardware is old so I suspect the protocol may not be changed. I will look into changing it next week when I have time. I changed my login to something more fordable.
How in the hell did they hack my network!!!
I do know anyone in my neighborhood is that slick. Our houses are far apart and I am by far the most tech within 150 yards. I suspect it came from out side my neighborhood. There are some mansions 200-300 yards behind me with only forest in-between. There must be a real smart teen with a good bit of hacking skills. They had to be using a directional antenna. You need that to even get our closest neighbors. There are no other networks I can see from my computers. My immediate neighbors are computer retards. Word processing, emailing and surfing the web push their skills.
|
|
Advertisement
|
 |
|
|
AfterDawn Addict
3 product reviews
|
9. July 2010 @ 12:11 |
Link to this message
|
you say you have wep security on your router,
does your router have wpa, wpa 2
also they could have seen your "routers name" when searching and got control of it
changed pasword and log in name ect,ect
could be the reason why you got kicked out after resetting it "they" tried to connect back in with default name & password again feckers
change routers name, login name to your router & password if you can
you could always take off the antenna if your router has 1 and see how it affects your performance
anyway Mez hope you sort it
shame you cant send a little surprise down the line to them :)
ALL INFO FOR EDUCATIONAL PURPOSE ONLY
HOOTER007
|
Member
|
9. July 2010 @ 12:48 |
Link to this message
|
You should also disable broadcast ssid . So they cant see your router .
|
AfterDawn Addict
|
9. July 2010 @ 14:01 |
Link to this message
|
|
flash your router to dd-wrt if you can. you have the ability to see who is logged on to your network, and you can disable wireless access to the router; the only way to change settings is if you physically plug in directly to the router with an ethernet cable.
ps2: v7 scph-39001 - independence exploit - hdloader 0.8c - maxtor 300gb hdd
(+[__]%) psp slim ta-085v1: 6.60 PRO B10
wii (powered by bootmii/priiloader): 4.1u - d2x v10beta53-alt (base 56) - configurable usb loader v70r51/devolution r188 - wd scorpio black 7200rpm 320gig w/ ams venus ds2 enclosure
got a whole lot more to list . . .
This message has been edited since posting. Last time this message was edited on 9. July 2010 @ 14:03
|
|
Mez
AfterDawn Addict
|
9. July 2010 @ 14:45 |
Link to this message
|
Originally posted by RastaDave:
You should also disable broadcast ssid . So they cant see your router .
How, is that a router setting?
I will do a security upgrade in a week or two and that will be on my list. How will ours see the router? I have XP and I think I use discovery mode or something like that to connect.
|
Member
|
9. July 2010 @ 16:08 |
Link to this message
|
Yes its an option in wireless settings . There should be a check box right after ssid . You will have to maually connect to the network by typing the ssid select the correct security setting and so on .
|
AfterDawn Addict
|
9. July 2010 @ 17:03 |
Link to this message
|
you should still upgrade the firmware to dd-wrt, if applicable to your linksys router, and disable wireless GUI access. that way, the hacker(s) can't get in unless they straight up go into your house and plug in directly to the router.
ps2: v7 scph-39001 - independence exploit - hdloader 0.8c - maxtor 300gb hdd
(+[__]%) psp slim ta-085v1: 6.60 PRO B10
wii (powered by bootmii/priiloader): 4.1u - d2x v10beta53-alt (base 56) - configurable usb loader v70r51/devolution r188 - wd scorpio black 7200rpm 320gig w/ ams venus ds2 enclosure
got a whole lot more to list . . .
This message has been edited since posting. Last time this message was edited on 9. July 2010 @ 17:04
|
Member
|
9. July 2010 @ 17:21 |
Link to this message
|
cee43ja1 is right dd-wrt has way more options than stk firmware . Just check and make sure you router is compatible .
|
|
Mez
AfterDawn Addict
|
12. July 2010 @ 09:23 |
Link to this message
|
Got it! I will, seeing who is on my net was on my todo list. I was also going to limit the max number to the real max number as well. I will upgrade but I really doubt the hacker will get into a pissing war with me when he can pick on a host of morons. He or she picked me because my hardware is likely the fastest in my local neighborhood with minimal security compared with the other neighborhood where hardware is great but security is probably tight.
Dave, I think that new member in the audio forum has both a few screws lose and does not speak English as a primary language. wtf is about all you can say without getting into a pissing match with an insane person. I got into one of those a few month back because the guy appeared to be more of an ass hole than a person truly insane. I was way wrong! The guy is taking on 10 members calling us all stupid lairs. He will not even listen to a moderator. He is taking care of the problem by doing that. I need to tune in today to see if he got banned yet. A moderator slapped him upside the head last night since a simple warning did not work and the slap didn't even phase him.
|
|
Mez
AfterDawn Addict
|
29. July 2010 @ 19:06 |
Link to this message
|
Originally posted by cee43ja1:
flash your router to dd-wrt if you can. you have the ability to see who is logged on to your network, and you can disable wireless access to the router; the only way to change settings is if you physically plug in directly to the router with an ethernet cable.
I did install but I did not see where I can see who is logged on.
This message has been edited since posting. Last time this message was edited on 29. July 2010 @ 19:06
|
Member
|
29. July 2010 @ 21:26 |
Link to this message
|
|
It will be under something like DHCP lease table or something similar . But since you flashed the drive its been erased and will only show device connected from the point where you flash and on .
|
|
Mez
AfterDawn Addict
|
29. July 2010 @ 21:53 |
Link to this message
|
|
Thanks!
|
|
Mez
AfterDawn Addict
|
4. August 2010 @ 11:18 |
Link to this message
|
|
I finally used a MAC list for allowing connections. That will be hard to crack. We do have 2 game systems that will not be able to get on unless I can find their MAC addresses.
|
Member
|
4. August 2010 @ 12:49 |
Link to this message
|
|
Not really they can spoof your mac . :P
|
|
Mez
AfterDawn Addict
|
4. August 2010 @ 13:52 |
Link to this message
|
|
Yes, I figure they can but unless they are already logged that will be difficult. I am not sure he will know what kept him out. I have also cut out service 12-7. I just need to be more of a pain in the ass than I am worth. I probably have one of the only gig routers in my local neighborhood. Both my neighbors have unsecured networks but they probably have a minimal connection. On the otherhand, maybe I am a challenge. If he keeps it up, I will drop a dime on him. To do that I will need to clean up my act first.
|
|
ps3lvanub
Suspended due to non-functional email address
|
14. August 2010 @ 18:46 |
Link to this message
|
|
Can I flash dd-wrt to my BT HomeHub 2.0???
IMPORTANT: If you hate Sony for being so corrupt, copy this image into your signature too! |
|
Mez
AfterDawn Addict
|
27. August 2010 @ 15:48 |
Link to this message
|
|
Well apparently it has gotten personal...
I had set the router up to pass out keys so my son could use his wireless game boy or what ever and the hacker stole it. I guess he had just just kept the system waiting hoping for me to pass out a key. Well my son will not be able to get on anytime soon. I may even get rid of my wireless network all together. THAT will be a pain.
|
AfterDawn Addict
3 product reviews
|
27. August 2010 @ 17:05 |
Link to this message
|
|
time to go hunting this fecker
ALL INFO FOR EDUCATIONAL PURPOSE ONLY
HOOTER007
|
|
Mez
AfterDawn Addict
|
27. August 2010 @ 18:10 |
Link to this message
|
Actually, I might just do that. No one in my neighborhood has anyone like that. I may take some binocs and check out the mansions a few hundred yards away. It has the dimensions of a tomato can. If I find him I will have a nice talk with his dad. If I dropped a dime they might be out 6 figures in royalty fines. I do hate the RIAA more than even this damn kid so I will not drop the dime no matter what.
|
|
Mez
AfterDawn Addict
|
20. September 2010 @ 15:29 |
Link to this message
|
I found a reference to a possible hole in WPA in a tech mag and tracked it down.
WPA is no longer secure...
What is the "Hole196" vulnerability?
"Hole196" is a vulnerability in the WPA2 security protocol exposing WPA2-secured Wi-Fi networks to insider attacks. AirTight Networks uncovered a weakness in the WPA2 protocol, which was documented but buried on the last line on page 196 of the 1232-page IEEE 802.11 Standard (Revision, 2007). Thus, the moniker "Hole196".
Central to this vulnerability is the group temporal key (GTK) that is shared among all authorized clients in a WPA2 network. In the standard behavior, only an AP is supposed to transmit group-addressed data traffic encrypted using the GTK and clients are supposed to decrypt that traffic using the GTK. However, nothing in the standard stops a malicious authorized client from injecting spoofed GTK-encrypted packets! Exploiting the vulnerability, an insider (authorized user) can sniff and decrypt data from other authorized users as well as scan their Wi-Fi devices for vulnerabilities, install malware and possibly compromise those devices.
In short, this vulnerability means that inter-user data privacy among authorized users is inherently absent over the air in a WPA2-secured network.
|
Junior Member
|
17. October 2010 @ 07:20 |
Link to this message
|
So Mez you've upgraded to DD-wrt correct?
Just use WPA-2. WHile it's not 100% secure, its such a pain to actually crack, You have no idea ahah. Just never use wep, it can be cracked in ten minutes :P (personal experiences and such). Hiding your SSID won't do anything expect make life harder for yourself. There are plenty of programs out there that search hidden networks.
Anyone who is hacking wifi signals 200 yards away is pretty pro. I would think they'd be using a dish to get that kind of range, which is illegal. Just a suggestion on what to look for :)
As for actually helping you, all I can say is WPA-2. :( sorry to sound like a broken record player. You also may try some offensive measures if this persists. I'll google around and see if theres any good tuts on what to do when I get some more free time. :)
This message has been edited since posting. Last time this message was edited on 17. October 2010 @ 07:23
|
|
Mez
AfterDawn Addict
|
17. October 2010 @ 10:26 |
Link to this message
|
No I wired up the house. Some of the computers are now stand alone. I am guessing there is another hole not mentioned. The articles that go into 196 in detail say WPA2 is not secure. I think they may be another hole they are keeping under wraps. 196 needs an agent already on your computer. I have run thorough scans on all the computers. I use about a half dozen apps. Some of these scans only point out app apps that can pass through the firewall, timed events ect. The computers look secure.
|
Junior Member
|
18. October 2010 @ 00:38 |
Link to this message
|
Ahh that sucks Mez. Truly sorry to hear. Must have spent a bundle on all those Ethernet cords!
So no more bandwidth issues I hope?
|
|
Mez
AfterDawn Addict
|
18. October 2010 @ 09:22 |
Link to this message
|
|
I only spent about 25 bucks since I only hooked up 2. No my office computer is faster and the family internet is a bit slower. That computer is hosed up so going to a slower connection didn't do much at all.
I am glad I did it. It is an investment in security. Keeping the wireless was just keeping the war going and eating up my time. Hackers are winning the security war and I want to try to secure my house.
|
|
Advertisement
|
|
|
Junior Member
|
18. October 2010 @ 19:40 |
Link to this message
|
|
Hackers will always win in the end. All the freeware tools that are out there. Entire operating systems based around hacking, like Backtrack.
It's especially sad when you figure it takes forever for companies to implement new encryption protocols.
This message has been edited since posting. Last time this message was edited on 18. October 2010 @ 19:41
|
