![]() | |
![]() | |
![]() |
Security Information |
|
![]() |
Road Warrior At Risk: The Dangers Of Ad-Hoc Wireless Networking
Airport Menace: The Wireless Peeping Tom It never fails that something interesting happens to me at the airport. I've even met some famous people during my travels. A few months ago, I ran into Frank Bielec, from the TLC show, Trading Spaces. But one of my favorite things to do at the airport is browse the wireless Ethernet waves. I'm never really surprised at what I find. I'm just glad I know more about wireless Ethernet than the average road warrior. The Dangers Of Ad-Hoc Wireless Networking Links However, for those who are not using "Infrastructure Mode", and are configured to communicate from machine to machine, or "Ad-Hoc", there are a few things you should be aware of. A wireless Ad-Hoc network allows you to communicate with other wireless Ethernet systems without using a wireless access point. It's kind of a peer to peer configuration and it works rather well. The problem is, most people just set it up, and forget about it. At home, it's not a huge problem, but when your on the road, it could cause you a great deal of grief. The airport is probably the best place to find Ad-Hoc networks. Business men and women, delayed once again, power up their laptops and get to work completing the days tasks, or planning tomorrows agendas. I can't tell you how many systems I find in the airport configured this way. Not just in the terminal, but on the plane. About three months ago, just after we reached cruising altitude and were allowed to use our "approved electronic devices", I found that the gentleman two seats up from me had a laptop configured as Ad-Hoc. He walked by me about ten minutes later and commented on how much he liked my laptop. I thanked him, and asked if his laptop was on, and configured to use wireless Ethernet, he said yes. To make a long story short, I showed him that I could see his laptops wireless Ethernet and informed him of the danger. He asked me if I could access his hard drive, and I told him that it might be possible. He asked me to see if I could, so I obliged. After configuring my laptop to use the same IP address class as his, and typing "net use * hiscomputersIPAddressc$ "" /USER:administrator", I received a notice that the connection was successful and drive Z: was now mapped to his computer. I performed a directory listing of his hard drive and the guy almost had a heart attack! After this, he moved up to the seat next to mine and we spent the next hour or so configuring his laptop securely, starting with securing his computers local administrator account. At one point during the configuration, he made the statement that I got real lucky because his local admin account did not have a password. My response to him was, I get lucky quite often. Who Else Has Your Client List The fact is, whether it be "Infrastructure Mode", or "Ad-Hoc" wireless Ethernet communications, if not properly configured and secured, can pose a significant risk. There are thousands of articles on the Internet about the dangers of improperly configured wireless networks, yet the number of unsecured networks seems to be getting greater, not less. Strength And Posture Does Reduce Your Risks When I perform security assessments, I create a list of potential targets, and potential methods of compromise. I then prioritize that list by which system, with a particular vulnerability, may be easiest to compromise. Those at the bottom of the list typically never come on my radar screen; the best scenario it to keep of the radar altogether. Conclusion 1. Above all, make sure all your user accounts have strong passwords, especially those that have administrative control over your system; 2. Configure your wireless network to use some sort of encryption. I know there is a lot of concern about the "crackability" of WEP, but if this is all you have to work with, and then use it. It is still helpful; 3. If possible, use MAC addresses filtering to restrict unwanted systems from attaching to your wireless network; 4. Make sure the firmware for your AP's and wireless Ethernet cards are up to date. These updates can be found on your card or AP's support site. Remember, if you are compromised over your wireless network it can be near impossible to track down where the attack came from. Worse yet, think about how many systems become compromised, and no one ever knows it? About The Author
MORE RESOURCES: Netanyahu said demanding Hamas leaders exiled, Gaza demilitarized, Israeli security control of Strip The Times of Israel Large Language Models Pose Growing Security Risks The Wall Street Journal The Diplomatic Security Service is being targeted for firings. Why that matters: Analysis - ABC News Trump administration orders Pentagon to plan for sweeping budget cuts The Washington Post 377th Security Forces Group Honorary Commander immersion kirtland.af.mil Google Ad-Tech Users Can Target National Security ‘Decision Makers’ and People With Chronic Diseases WIRED Citrix Releases Security Fix for NetScaler Console Privilege Escalation Vulnerability The Hacker News Remarks at a UN Security Council Briefing on the Democratic Republic of the Congo United States Mission to the United Nations All Things Investigations: CFIUS - Balancing Security, Investment and Innovation with Sean Reilly JD Supra Streamline Your Security: Automate Compliance Database Assessments with Qualys Cloud Agent Qualys Blog CISOs wollen Cloud-Security vorantreiben CSO Online 5 Security Cameras for the Price of One? Blink Outdoor 4 Now Discounted to $200, Only $40 Each Gizmodo Did You Work at the National Nuclear Security Administration? We Want to Hear From You. The New York Times When Brand Loyalty Trumps Data Security Dark Reading DOJ Regulations Will Restrict Data Transactions to Address National Security Concerns Akin Gump Strauss Hauer & Feld LLP The Case For Tetairoa McMillan: Maye's security blanket of the future? NBC Sports Boston Tufin Reports Record 2024, Driven By Increased Demand for Comprehensive Network Security Solutions Business Wire Remarks at a UN Security Council Open Debate on Practicing Multilateralism, Reforming and Improving Global Governance United States Mission to the United Nations The Security Implications of Developments in Biotechnology International Institute for Strategic Studies HSToday Welcomes Former DHS Chief Information Security Officer Kenneth Bible to Editorial Board HSToday Lahaina to implement stronger security measures as fire victims suffer string of thefts Hawaii News Now Major general will teach on national security Hillsdale Collegian Integrating LLMs into security operations using Wazuh BleepingComputer PUMA’s Sustainability Efforts for Climate, Water Security and Forests Receive ‘Leadership Level’ Scores From CDP Business Wire New CodeMeter Embedded Security, Usability, and Flexibility Features to be Unveiled at Embedded World 2025 A3 Association for Advancing Automation ipoque, HSU/UniBw H join to boost critical infrastructure security with advanced 5G drone detection technology IndustrialCyber Trump administration freezes funds to Palestinian security forces The Washington Post Taiwan’s Nuclear What-If: Implications for U.S. Strategy and Global Security Global Security Review OpenText launches threat detection for Microsoft security tools Techzine Europe Cleared to connect: American Airlines pilots streamlined security program in collaboration with US and UK governments American Airlines Newsroom Video: How Omega Systems Puts The Security In MSSP Channel Insider How Q-Day and Security Demands Are Fuelling Cloud Modernisation IT Security Guru SEALSQ Follows Microsoft’s Majorana Quantum Breakthrough with Comprehensive Post-Quantum Security Solutions Morningstar AppSOC Named a Featured Launch Partner for the Second Edition of the Cutting-Edge Databricks AI Security Framework Business Wire Alectra Inc. employees unite with compassion to raise $200,000 for United Way’s food security programs GlobeNewswire Zelenskiy: Ukraine Offering Fast, Constructive Accord With US on Security, Investments U.S. News & World Report AITX Announces HERO, the Humanoid Robot Addition to RAD's Safety & Security Solutions Lineup Yahoo Finance TP-Link Systems Inc. Appoints Adam Robertson as New Director of Information & Security Business Wire Menlo Security Acquires Votiro to Deliver Easy, AI-driven Data Security to Enterprises Business Wire Officials revise proposed boundaries for downtown Dayton NATO Village security zone Dayton Daily News 1Password helps MSPs boost security and streamline their operations Help Net Security Democratic Senators Send Letter to Homeland Security Demanding End Wrongful ICE Searches & Harassment of Tribal Members Native News Online Topic: Relations with Ukraine NATO HQ Indra Launches Pan-European Port Security Project The Defense Post Munich Cyber Security Conference 2025 Brunswick Group NATO chief says 'robust' security guarantees needed to end Russia's 'terrible aggression' in Ukraine Anadolu Agency | English Next-Gen Security Revolution: This AI-Powered Robot Could Replace Human Guards at 1/5 the Cost StockTitan Hospital attack leads to increased calls for added security for nurses WPBF West Palm Beach San Antonio Airport introduces post-security guest pass Passenger Terminal Today Security Industry Embraces Mobile Credentials, Biometrics and AI, New Trends Report From HID Finds Security Today Ukrainians are looking past NATO to a European security architecture Al Jazeera English A Policymaker’s Guide to China’s Technology Security Strategy Information Technology and Innovation Foundation |
![]() |
![]() |
![]() |
RELATED ARTICLES
Web and Computer Security Well, if that would have been said to me by my father when I was 2 years of age, I would have understood. But when today, my own computer tells me that when I am 34, I wonder why I spent $1500 on my computer hardware and software just to enjoy the (un-realized) benefits of this great and revolutionary information technology?Today’s cyberspace is hazardous. Network Security 101 As more people are logging onto the Internet everyday, Network Security becomes a larger issue. In the United States, identity theft and computer fraud are among the fastest rising crimes. Watching the Watchers: Detection and Removal of Spyware If spyware were a person and he set himself up in yourhouse, you are likely going to do one of two things. You'llkick him out yourself or you'll call someone (such as thepolice) to do it for you. Is My PC Vulnerable on the Internet? No longer are viruses the only threat on the internet. In recent years other threats have evolved which include spyware, adware, hacking, identity theft, information theft, pop-ups and the loss of information. Avoiding Scams: If It Sounds Too Good to Be True, It Probably Is A week or so ago, I received an inquiry from a man in Indonesia about buying multiple copies of certain items on my website. I immediately suspected fraud, so I explained that I only had one piece of each. Fishing for Fortunes. Scam! Spelt phishing, but pronounced as above, this despicable act is an effort to batter your bankroll or commandeer your cash.To put it simply, you can get emails from account administrators, which strongly urge you to update details attached to that account. Everything You Need To Know About Spyware and Malware You are at your computer, checking out software on EBay. The computer is really sluggish, and you are not running anything else. Keeping Worms Out of Your Network... No auntie Sookie, not earth worms, computer virus worms that can get to you computer and slowly dig deep into your files and eat them away. Put that eggnog down and I'll tell you some more about these new worms. Phishing and Pharming: Dangerous Scams As soon as almost all computer users already got used to -- or at least heard about -- the word "phishing", another somewhat confusing word appeared not long ago. Pharming. Anti-Spyware Protection: Behind How-To Tips There is no doubt that "how-to articles" have become a separate genre. One can find such an article about almost anything; there are even some entitled "How to Write a How-To Article". Phishing - Its Signs and Your Options Phishing is the act of some individual sending an email to a user in an attempt to scam the user to release personal information. Is it easy to determine if it's a scam? Sometimes - but not always. Burning Bridges is Bad, But Firewalls are Good When you signed up for that ultra-fast DSL or Cable connection there was probably one very important piece of information that your ISP failed to mention. By accessing the Internet via a high-speed connection, you have tremendously increased your chances of being victimized by a computer hacker. Dialing Up a Scam: Avoiding the Auto-Dialer Virus For many, the daily walk to the mailbox evokes mixed feelings: The glee that your favorite monthly magazine - or a friend's hand-written letter (quite a surprise in the e-mail age) may be waiting is countered by anxiety of how many bills the postman left you.Now, imagine coming across your phone bill, thicker and heavier than normal. Phishing: A Scary Way of Life The Federal Bureau of Investigation has identified "phishing" as the "hottest and most troubling new scam on the Internet."What is Phishing?Phishing is a scam initiated via e-mail. How Spyware Blaster Can Protect Your Computer From Harm By browsing a web page, you could infect your computer withspy ware, ad ware, dialers and hijackers. These, unwelcomeguests, are some of the fastest growing threats on theInternet today. Delete Cookies: New-Age Diet or Common Sense Internet Security? No, this article isn't about some new, lose-20-pounds-in-a-week, certified-by-some-tan-Southern-California-doctor diet. It's about cookies on your computer - what they are, why they are there, and what to do about them. Data Security; Are Your Company Assets Really Secure? Is your data secure? Think again. Securing data is unlike any other corporate asset, and is likely the biggest challenge your company faces today. What Can Be Done About Spyware And Adware Having a good Spyware eliminator on your computer is vital now a days with all of the different Spyware, Adware, and other malicious computer parasites that are out there. Most of them are reasonably priced and very easy to use. How to Get Rid of New Sobig.F Virus? As you know, this time the virus under the name Sobig.F has wreaked quite havoc! No doubt, many of us have suffered from this recent virus outbreak. Hacked: Who Else Is Using Your Computer? A friend called me one day and asked if I would stop by to look at his computer. He said it was running abnormally slow and he had found something on his hard-drive he could not explain. ![]() |
home | site map |
© 2006 |