![]() ![]() In New York, you’ll find Optimum internet service in The Bronx, Brooklyn, Long Island, Poughkeepsie and Yonkers, among other NY cities. Thanks for reading! Change the default password and maybe the name of the WiFi network as well.įollow me on Twitter and stay tuned for more updates.If you’re shopping for internet service in the greater NYC area, it’s likely that Optimum internet will be an option. What else needs to be done? In my opinion a firmware update should be issued, stickers to go over the old default password and name that sits on the bottom of the router. ![]() The larger issue is that not everyone is aware that this default password is insecure and most people just plug the router in and use it right away. Now that you are aware of the problem you might be asking how to fix it? Easy, change your WiFi password from the default. If the name and the MAC match then one can be pretty certain it's an optimum router, if not it'll only take an hour to figure that out. The hexadecimal name is actually the MAC address of the router (which shows up when sniffing for routers). I've noticed that optimum routers utilize hexadecimal names. These worm botnets are particularly dangerous and can scale in size very very quickly and without any interaction.īut how does one identify such a vulnerable WiFi router? Unfortunately that can be derived from the name of the WiFi network. Notable recent examples of "worm botnets" include the Mirai botnet which did a lot of damage last year. A botnet is a collection of computers that have been hacked and are now doing the bidding of a black-hat hacker. ![]() A computer worm is a type of a virus that's designed to hop from computer to computer without user interaction. The persistent reader may still be doubtful, let me explain what a computer worm is and what a botnet is. Utilizing this knowledge someone could easily drive through cities, collect loads of these WPA2 handshakes one at a time, and crack them whenever the need arises. This is when a hacker drives by someone's house and tries to connect to a WiFi that's in range. There's something called war-driving that is utilized by WiFi hackers. Now the doubtful reader may still be unconvinced of the dangers, let me further elaborate. Computers are pretty powerful these days and I can crack my own default password on my computer utilizing a program called hashcat and leveraging the GPU in under an hour with 2.5GB available GPU. That may sound like a lot of possibilities, but it's not. Since there are only numbers used that means there are only 10 million possible combinations (10 to the 8th power for 10 numbers). This is very insecure, cracking the password then becomes a matter of statistics. These passwords are 8 digits long and that is just within the computational range. The out-of-the-box Optimum routers that are sent out to subscribers have passwords made up solely of numbers. The issue here is an implementation flaw. Now usually this isn't too much cause for concern, there are plenty of hackers that do this every day and can't crack the password. This handshake can be brute-forced from anywhere without having to connect to the WiFi network.They reconnect and the 3-way WPA2 "handshake" is captured because the hacker is sniffing the traffic and saving to disk.This causes the devices to disconnect from the network.If there are devices then the hacker will continue sniffing (additionally saving to disk) while sending out de-authentication packets to connected devices.Hacker picks a vulnerable network to target, dials in on that target to sniff out which if any devices are connected. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |