My colleague was telling me, just last week, that his connection at home seems to be running exceptionally slowly. First thing I asked him: are you using a wireless router? When he said yes, I asked him about a password. Just as I guessed, he said “What password?”

I moved to a new building a month or so ago and have been having problems having wired Internet hooked up. I have a mobile dongle which I can use to a certain extent but guess what? One day, I turned my WiFi on and voila, the laptop automatically connected to some fella’s wireless connection.

The fact is that this is such a common thing. Hotels, shops, and other establishments are also guilty of this neglect. I have a friend who works from home and is entirely dependent on the Internet. When her connection goes down, she simply gets in her car and drives to a nearby hotel where she can mooch.

It may seem funny or amusing, but if an unscrupulous individual gets wind of your unsecured WiFi, you just might get your bum bitten. If I were you, I’d make sure my WiFi is secure. How to do this? Let’s look at this in the next post.

According to a recent survey conducted in the UK, mobile phone users do not really pay that much attention to security. IT Pro has this story:

Results from a survey of UK mobile phone users has found too many of us are playing fast and loose with sensitive data stored on our mobile phones.

More alarmingly though, it also found that the majority (99 per cent) of those questioned also used their mobiles for business use, creating a potentially weak security link to their employers’ corporate systems.

So what kind of sensitive data is stored in mobile phones? I think that you can answer this yourself but let’s take a look at some of them:

• Bank account details
• PINs
• Passwords
• Social security numbers

More than these things, mobile phone users also admitted to accessing and storing business data on their phones. This includes downloading spreadsheets and other business documents.

The worst part is that despite the fact that this information is stored in mobile phones, the units themselves do not have passwords and other forms of security measures.

The bottom line? At the very least, we have to put passwords on our mobile phones. Even better, enable encryption.

Photo courtesy of http://www.flickr.com/photos/osde-info/763025492/sizes/s/

In most cases, people use WEP, or Wired Equivalent Privacy. While this provides a certain level of protection, WEP is relatively easier to crack. If a hacker is persistent enough, WEP will give way quite easily. As such, I suggest using WPA (Wireless Protected Access) or WPA2 instead. Either way, you will need to indicate an encryption key. As with other instances wherein you have to choose a password, choose one that is hard to guess. Long encryption keys that are combinations of letters and numbers are the best kind.

Another thing that you should do is to change the default SSID (Service Set Identifier) name. This is what computers used to detect available wireless networks. Most laptops and mobile phones are set to automatically detect available SSIDs. If you change the default name, and turn of SSID broadcasting, users who want to connect will have to enter the name manually.

Last, you might want to disable DHCP, or Dynamic Host Configuration Protocol. This will require you to assign IP addresses manually. If you can do this, then you will have added security. However, if you think it’s too complicated, you can leave it. The first two tips above will already give you good enough security for everyday purposes.

My colleague was telling me, just last week, that his connection at home seems to be running exceptionally slowly. First thing I asked him: are you using a wireless router? When he said yes, I asked him about a password. Just as I guessed, he said “What password?”

I moved to a new building a month or so ago and have been having problems having wired Internet hooked up. I have a mobile dongle which I can use to a certain extent but guess what? One day, I turned my WiFi on and voila, the laptop automatically connected to some fella’s wireless connection.

The fact is that this is such a common thing. Hotels, shops, and other establishments are also guilty of this neglect. I have a friend who works from home and is entirely dependent on the Internet. When her connection goes down, she simply gets in her car and drives to a nearby hotel where she can mooch.

It may seem funny or amusing, but if an unscrupulous individual gets wind of your unsecured WiFi, you just might get your bum bitten. If I were you, I’d make sure my WiFi is secure. How to do this? Let’s look at this in the next post.

But while such a privilege is another fruit of technology, duty calls as far as limiting network access. Passwords are still the wise investment for securing your wireless network and at the start it does look like a lot of work and a bit complicated. Limiting access by providing a (Media Access Control) MAC address and disabling the SSID broadcast can help in making sure your wireless network cannot be found or detected.

With various technology means today, practically anyone is trying to look for wireless internet. That is how much Internet is being demanded these days. But this includes both sane and malicious people who may want to give problems.

So for people who want to protect their wireless networks, here are some tips you can consider:

Don’t use defaults. It is almost always a good idea to change default usernames and passwords and your wireless router is no exception. One of the first things you should do when setting up your wireless network is to change the default administrator username and password.

Additionally, most routers have a default name, or SSID, for your wireless network (i.e. belkin54g). It’s a good idea to change this for several reasons. First, if you don’t change it, it will serve as a hint to intruders that you probably left the defaults in place everywhere. Second, once an intruder knows what model router you’re using, it’s not difficult to find the default username/password and to look for known exploits.

Use encryption. Every good router supports encryption and if you’re not using it, your network’s security is likely to be compromised. If you have newer equipment, use WPA or WPA2 encryption. WEP encryption is less secure.

Use MAC address filtering. Every network card, whether it’s wireless or wired, has a unique Media Access Control address (MAC address). A good wireless router will allow you to specify that only certain MAC addresses be allowed to access the wireless network. This can help prevent unauthorized computers from accessing your network.

Be sure to read your router’s documentation to find out how to set up MAC address filtering. To find out how to determine the MAC address of your network cards, click here.

Use your firewall. Most good routers have some sort of firewall built in and it should be used in addition to a good software firewall that is installed on the devices accessing your wireless network.

Disable SSID broadcast. By default, most routers “broadcast” their existence to the world. This makes it easier for devices to detect their presence and connect automatically. But this broadcast also gives intruders a target. By making your network “invisible” and setting up devices that need to access it to connect manually when in range, you can make your network less of a target to less-savvy intruders.

Source

Change the default administrator passwords. Default administrator passwords to network devices are easily available online and well-known to hackers. Most routers allow you to change this easily.

Turn on data encryption. This allows you to scramble the messages and data sent through the network. Most devices come from the manufacturers with this option turned off, so users have to activate this. Also note that all Wi-fi devices in your network must share the same data encryption settings to work together.

Disable SSID broadcast or change the default SSIDs. SSID is short for service set identifier, and is attached to the header of all packets in a wireless network. It also uniquely identifies your network. This is broadcast at regular intervals, and hackers can use this to identify vulnerable networks. Also, change your SSID from the default, and refrain from using IDs that can reveal who owns your router and where it’s located.

Restrict the computers that can access your network. You can do this by filtering the MAC (Media Access Control) addresses to those of the devices in your network.

Install antivirus software and firewalls. This might seem obvious, but after the initial install most users forget to update their virus definitions. Computers on a wireless network needs the same protection as other computers.

Worms such as Cabir, have become the onslaught of rampant mobile phone intrusions, something that uses the Bluetooth connectivity as a means of infecting mobile phones of today. Once they get through, malfunctions and error messages are sure to ensue, making it a need for the software systems of mobile phones of today to be either formatted or disinfected with available anti-virus and worm removers such as Panda Software.

Inconvenient as it may seem, it is advisable for mobile phone owners to refrain from activating their Bluetooth connections to avoid such infections and untoward intrusions at any time.

The best way to avoid such links is to refrain from clicking on links without prior notice from the actual user. While most people would rely heavily on the level of relationship that they would have with their online buddy, it is still best to double check and verify before proceeding on the site link.

Being infected is quite painful that it leads to even formatting the entire system. This holds true for people who are not aware or have the time to clean it manually and methodically. Hence, the best way is to be more cautious, especially when peculiar links are met.

For the time being, it would be advisable for people to scan third party storage devices such as diskettes, USB drives and mobile storages to be safe and sound. These wandering viruses can attack at any time and this is a fact anywhere computer related materials are concerned.

Files can go as far as infecting the executable files, hence document, excel and compiled scripts are baits for immediate infection and malicious intrusions. Software applications also have their limits as their development teams cater only to a specific genre for known harmful files. But it is better to lower the risk of intrusion than not having protection at all.

[tags]scan, spyware, virus, infections, spyware, malware, trojans[/tags]

According to a story ran by Apple 2.0, hackers were kind of stymied during the contest. Here is a snippet of the feature:

The contest, sponsored by 3Com’s (COMS) TippingPoint computer security division, pitted some of the world’s sharpest hackers and computer security experts against five smartphones: an Apple (AAPL) iPhone, a Research in Motion (RIMM) BlackBerry and phones running on Google’s (GOOG) Android, Microsoft’s (MSFT) Windows Mobile and Nokia’s (NOK) Symbian operating systems.

Although the rules were relaxed each day to make hacking easier, the phones managed to withstand the few attempts that were made to “pwn” them — Internet-gamer slang meaning to conquer or gain ownership.

I believe this was the same convention where the Safari was hacked by Miller. Luckily for the smartphones, though, none were cracked by the time the contest ended. This spells good news to smartphone owners like me and you. I was just thinking about searching for more security applications for my Nokia smartphone but perhaps it is not that urgent.

So are the phones just that good? Perhaps. Or maybe, they are still new and they have not really been the focus of hackers. While this is good news, I am thinking that pretty soon, they will become the targets. What do you think?

Photo from 3g