BT, Sky, Talktalk Warning

Johnnytoxic

Johnnytoxic

Johnnytoxic

Permabanned
Joined
13 Nov 2006
Posts
5,798
Although the chances are slim of it happening to you, be assured that the default passwords on these routers are easily brute forcible now.

If you have not changed it yet, I recommend you do so.
 
All Sky Routers have the same password but surely you can only access the Router once connected to it? Which requires the WPA/WPA2 key? I thought WPA was fairly secure and WPA2 very?
 
New Sky Routers, as an example, use WPA2. Turn off WPS and I believe it would take a concerted effort to break it. From a quick Google a Hacker would need to be in the vicinity of your network when you connect a device, take the information (which doesn't actually include the network key as the transmission is still encrypted when a device is connecting) and then try and use a Brute Force attack. Sure he already has some info if he knows about Sky Routers (eight capitals, no numbers) which I'd actually like Sky to increase and to include some numbers, maybe move to 12 characters and add 4 numbers in there. I'd imagine eight random letters wouldn't actually take that long but it's like most things. An opportune Wi-Fi user just looking for free Wi-Fi is likely to find an open network within a few hundred yards of your house although that number is diminishing. Much like if they want your car specifically they'll find a way. If they want access to your Wi-Fi specifically they will also find a way.
 
Last edited:
MissChief said:
New Sky iconic you walk rs, as an example, use WPA2. Turn off WPS and I believe it would take a concerted effort to break it. From a quick Google a Hacker would need to be in the vicinity of your network when you connect a device, take the information (which doesn't actually include the network key as the transmission is still encrypted when a device is connecting) and then try and use a Brute Force attack. Sure he already has some info if he knows about Sky Routers (eight capitals, no numbers) which I'd actually like Sky to increase and to include some numbers, maybe move to 12 characters and add 4 numbers in there. I'd imagine eight random letters wouldn't actually take that long but it's like most things. An opportune Wi-Fi user just looking for free Wi-Fi is likely to find an open network within a few hundred yards of your house although that number is diminishing. Much like if they want your car specifically they'll find a way. If they want access to your Wi-Fi specifically they will also find a way.
Click to expand...

LOL you're just trying to confide in yourself and your supposed security level.

I stand by what I said previously, if you want to give me permission to break your wpa2 noobness I will be happy to do so and install a honeypot for no extra charge
 
Johnnytoxic said:
Although the chances are slim of it happening to you, be assured that the default passwords on these routers are easily brute forcible now.

If you have not changed it yet, I recommend you do so.
Click to expand...

Where's the evidence?
Where's the detailed explanation?
 
Subliminal Aura said:
LOL you're just trying to confide in yourself and your supposed security level.

I stand by what I said previously, if you want to give me permission to break your wpa2 noobness I will be happy to do so and install a honeypot for no extra charge
Click to expand...

could you tell us all how to install a honeypot for free?

or link us to a simple guide?
 
The WPA password.

8 characters uppercase OR lowercase
BT and TalkTalk also vulnerable

Just two 7970's churning out 160,000 keys per second each could brute force one in 8 days.

Just a heads up to be aware. With GPU power also increasing these times will get shorter and shorter. Most people don't tend to change the default password.
 
I'm on TalkTalk but don't use their supplied router, I should be O.K right? There's currently no password on mine, it asks you for a password but you just click submit and it logs you in. :p
 
Johnnytoxic said:
The WPA password.

8 characters uppercase OR lowercase
BT and TalkTalk also vulnerable

Just two 7970's churning out 160,000 keys per second each could brute force one in 8 days.

Just a heads up to be aware. With GPU power also increasing these times will get shorter and shorter. Most people don't tend to change the default password.
Click to expand...

Like I said, if someone wants access to your wireless network specifically they will find a way. Same way if they wanted your car specifically they'll find a way. I find it unlikely that some 'script kiddie' will be happy to spend £500 on graphics cards and spend potentially days trying to crack a WPA2 key when there is likely to be someone using a WEP key which is crackable in seconds in the vicinity. Realism people, not paranoia.
 
Subliminal Aura said:
Just Google it mate
Click to expand...

Lamest comeback ever.

Johnnytoxic said:
The WPA password.

8 characters uppercase OR lowercase
BT and TalkTalk also vulnerable

Just two 7970's churning out 160,000 keys per second each could brute force one in 8 days.

Just a heads up to be aware. With GPU power also increasing these times will get shorter and shorter. Most people don't tend to change the default password.
Click to expand...

Far easier to get the MAC address of aforementioned Sky router, then feed it into the algorithm that creates the default password in the first place (unless it's an SR101 for the moment).

MissChief said:
Like I said, if someone wants access to your wireless network specifically they will find a way. Same way if they wanted your car specifically they'll find a way. I find it unlikely that some 'script kiddie' will be happy to spend £500 on graphics cards and spend potentially days trying to crack a WPA2 key when there is likely to be someone using a WEP key which is crackable in seconds in the vicinity. Realism people, not paranoia.
Click to expand...

Couldn't agree more. :D
 
MissChief said:
Like I said, if someone wants access to your wireless network specifically they will find a way. Same way if they wanted your car specifically they'll find a way. I find it unlikely that some 'script kiddie' will be happy to spend £500 on graphics cards and spend potentially days trying to crack a WPA2 key when there is likely to be someone using a WEP key which is crackable in seconds in the vicinity. Realism people, not paranoia.
Click to expand...

Pretty sure there are services out there that these people use which do the brute force for them, providing they can supply the hash...

Password padding all the way!
 
You must log in or register to reply here.
Back
Top Bottom