Wireless Networks and Security
Introduction
Wireless networks have become an inherent part of our life and we all use wireless networks in some form in our day to day life. Of all the utilities provided by wireless networks, we use wireless networks widely for connecting to the internet. We connect to the internet wirelessly either by router or using mobile data and enjoy the internet on our device from anywhere in the house.
However, maintaining security of our wireless network is vitally important. The wireless network we use is responsible for transferring and sending data like username, password, card details and other sensitive data. If the wireless network we use is not secure then we are at risk and face undesirable consequences.
Learn Network Security Fundamentals
Example – An attacker could perform following attacks if the wireless network is not secured –
1) Intercept data being transmitted or received
2) Gain access to the files and folders onto the system
3) Use your internet connection and hijack it to use your bandwidth
Now the question is how do we keep our wireless network safe and secure from external attacks.
Following are the few steps one should take to secure their wireless network –
1) Change default home network name – If one has to secure their wireless network, the first thing they should do is change their default home network name. This is also known as SSID. Default network name reveals router brand being used and helps cybercriminals to search for vulnerabilities in specific brands and try to exploit vulnerabilities present in them. SSID should be unique and should not reveal brand manufacturer name.
2) Wi-Fi Password – Many times the password set for accessing wireless connection is too simple to predict and guess. Mobile number, children’s name, date of birth can prove disaster since anyone can get into your network. The password should be long enough and must be a combination of alphabet, numbers and special characters so it becomes difficult for an attacker to guess the password. Also, the Wi-Fi password should be changed after a certain period of time like after every 30 days or so.
3) Wireless Encryption – Routers provide various encryption like WEP, WPA, WPA2 and WPA3. WEP and WPA should not be used anyhow, WPA2 should be used. Not all routers provide WPA3 and if available WPA3 should be used instead of WPA2 along with AES Encryption.
4) Default login username password – By default majority of the router uses admin:admin as username password for accessing router console page. This is the easiest way to access the router console once you are into the network and can change the password of the Wi-Fi connection. The default username and password should be changed so it becomes difficult to access the router console.
5) Change default IP to access router console – Usually router console can be easily accessed by querying 192.168.0.1 or 192.168.1.1 on Browser. This makes it simple for anyone to access the router login page and try various password combinations. If this default IP is changed then it becomes difficult to access the console page and try various passwords.
6) Turn off DHCP – If possible DHCP should be turned off and only static IP addresses should be assigned to the devices in the network.
7) Disable Remote Access to Router – Many a times the router console can be accessed remotely. This enables an attacker to access the router over the internet, making the router more vulnerable and prone to various forms of attacks which can be conducted sophisticatedly over the internet.
8) Firmware Update – The router firmware should be kept updated to the latest version. This prevents flaws and vulnerabilities present in older versions which can be exploited by an attacker.
9) Firewall – A firewall should be actively used to allow legitimate traffic to flow within the network. Proper firewall setting should be done on the router page to allow only certain types of traffic rest should be denied.
10) VLAN Isolation – VLAN should be made use of to segregate the network and allow devices to be placed in a particular VLAN.
These are some of the simple and effective steps which when followed can provide all round-protection for your Wi-Fi Network.
Conclusion
Wireless Network though they make our life sophisticated comes with the great responsibility of securing them since they are more vulnerable to attack as compared to wired networks. If one is using wireless networks then proper security measures should be in place to make them secure and safe from attacks.
Learn Network Security Fundamentals
Sources
- https://www.sciencedirect.com/topics/computer-science/wireless-network-security
- https://www.cybintsolutions.com/this-is-what-you-need-to-know-about-wireless-network-security/
- https://www.kaspersky.co.in/resource-center/preemptive-safety/protecting-wireless-networks
- https://heimdalsecurity.com/blog/home-wireless-network-security/
Network Security Fundamentals
Learn the fundamentals of networking and how to secure your networks with seven hands-on courses. What you'll learn:- Models and protocols
- Networking best practices
- Wireless and mobile security
- Network security tools
- And more
In this Series
- Wireless Networks and Security
- What is zero trust architecture (ZTA)? Pillars of zero trust and trends for 2024
- A deep dive into network security protocols: Safeguarding digital infrastructure 2024
- Asset mapping and detection: How to implement the nuts and bolts
- The Pentagon goes all-in on Zero Trust
- How to configure a network firewall: Walkthrough
- 4 network utilities every security pro should know: Video walkthrough
- How to use Nmap and other network scanners
- Security engineers: The top 13 cybersecurity tools you should know
- Converting a PCAP into Zeek logs and investigating the data
- Using Zeek for network analysis and detections
- Suricata: What is it and how can we use it
- Intrusion detection software best practices
- What is intrusion detection?
- How to use Wireshark for protocol analysis: Video walkthrough
- 9 best practices for network security
- Securing voice communications
- Introduction to SIEM (security information and event management)
- VPNs and remote access technologies
- Cellular Networks and Mobile Security
- Secure network protocols
- Network security (101)
- IDS/IPS overview
- Exploiting built-in network protocols for DDoS attacks
- Firewall types and architecture
- Wireless attacks and mitigation
- Wireless network overview
- Open source IDS: Snort or Suricata? [updated 2021]
- PCAP analysis basics with Wireshark [updated 2021]
- What is a firewall: An overview
- NSA report: Indicators of compromise on personal networks
- Securing the home office: Printer security risks (and mitigations)
- Email security
- Data integrity and backups
- Cost of non-compliance: 8 largest data breach fines and penalties
- How to find weak passwords in your organization’s Active Directory
- Monitoring business communication tools like Slack for data infiltration risks
- Firewalls and IDS/IPS
- IPv4 and IPv6 overview
- The OSI model and TCP/IP model
- Endpoint hardening (best practices)
- Networking fundamentals (for network security professionals)
- How your home network can be hacked and how to prevent it
- Network design: Firewall, IDS/IPS
- Work-from-home network traffic spikes: Are your employees vulnerable?
- RTS threshold configuration for improved wireless network performance [updated 2020]
- Web server protection: Web server security monitoring
- Web server security: Active defense
- Web server security: Infrastructure components
- Web server protection: Web application firewalls for web server protection
- Web server security: Command line-fu for web server protection
Get certified and advance your career
- Exam Pass Guarantee
- Live instruction
- CompTIA, ISACA, (ISC)², Cisco, Microsoft and more!
