Strange Occurance - unauthorised wifi access?

Soldato
Joined
17 Jan 2006
Posts
4,313
Long post warning...sorry

Hi all

Got a bit of a question for all you internet/wifi expert types

Firstly some background then the strange occurance.

My parents have a pc at home which is hooked up to a netgear router/switch (standard one provided by virgin - adsl not cable internet) which provides their internet.

They have the wireless switched on and secured with a wep key (not ideal I know but it's how it was setup as standard and was simple for them to setup). It only really gets used by my brother and I when we visit as our HTC phones are both setup to connect to it.

From time to time my mum uses their pc to check her work emails. She does this by logging into her works exchange email server. To do this she enters the ip address of the server in internet explorer then enters her username and password to get into her email.

Today, while at work and using her works laptop (which although she use it at home sometimes, is never connected to their internet either wirelessly nor wired) she was checking her work emails. One of the emails from a company she deals with regularly (which supplies food related products suitable for Coeliacs) , had a link to a survey to fill in to be entered into a prize draw to win some free products.

She clicked on the link (I know...and I have told her off for this!). It opened up a webpage with the survey on it asking some questions about various products etc. She filled it in, which was just a case of ticking a few boxes, then clicked submit, this then took her to a page to enter her name, address etc.

Now the strange bit...

When she looked, the details were already filled in, not too strange you think... Well the details weren't hers but instead were those of a person who lives pretty much directly across the road from my parents!!! The only detail that was my mums was the email address.

My parents router is in the study (well, box room ;)) upstairs at the front of the house and probably has a link of sight direct to the house of the person across the road whose details were in the form.

I'm a bit confuzzled as to what exactly has occured.

Has the girl across the road connected to my parents wifi?

If so has she then access my mums works email server, seen a link in some other email from this same company and filled in her details which have then been linked with my mums email address and hence auto filled in when my mum has visited another page from this company?

Would someone who has enough know how to break a wep code (simple enough I know) then find out the ip address, username and password for my mums work emails, then make the mistake of using her actual details when filling in a form in a website?

Is there anything else which could have happened?

I have told my mum to switch off the wifi on the router until I can get round to setup wpa2 with a decent and unguessable passcode.

I have also told her to change her works email password

I also told her to speak to the company and see what contact address/details they have for her works email address and if possible find out how they have got them...ie filled in from a web page?

Any thoughts about what has gone on?
 
WEP is ludicrously easy to break. As in, anyone who tries and can google will find it possible.

Therefore it's entirely plausible it's been broken. I'd switch to:
1) WPA2 (or WPA if not possible)
2) A unique SSID; not "Netgear"
3) A nice long password with a mix of letters and numbers. Easy ones to use are your first car and number plate; could be RenaultClio-P393BFX - Easyish to remember, a pain to break into.
 
The only way this is possible is if your mum's neighbor has physically used your mum's laptop and entered her details in a form. The browser has then remembered the form's values.


Also, there was no need to make such a long and detailed post lol. :p
 
Last edited:
Best password to use for your router is its serial number. BE do this by default. It's good because only someone with physical access to the actual router could possibly know the password. Oh, and use WPA2 of course.
 
WEP is ludicrously easy to break. As in, anyone who tries and can google will find it possible.

Therefore it's entirely plausible it's been broken. I'd switch to:
1) WPA2 (or WPA if not possible)
2) A unique SSID; not "Netgear"
3) A nice long password with a mix of letters and numbers. Easy ones to use are your first car and number plate; could be RenaultClio-P393BFX - Easyish to remember, a pain to break into.

This. I would never use WEP after a mate showed me how to crack it lol. Also maybe consider hiding the SSID so it just appears as 'Unnamed Network' when searched for so you actually have to type in the network name in order for it to connect in the first place ;)
 
Although you should change the wifi credentials as WEP is not secure I dont think that is the problem here.

I cant say how that happened but normally details like that are cached by the browser so your neighbour would have had to of used the browser to enter those details at some point in the past.
 
The only way this is possible is if your mum's neighbor has physically used your mum's laptop and entered her details in a form. The browser has then remembered the form's values.

I cant say how that happened but normally details like that are cached by the browser so your neighbour would have had to of used the browser to enter those details at some point in the past.

This is what I was most confused by, as the neighbour has definitely not had use of the laptop at any point in time! It's a works laptop and my mum only uses it for work and doesn't connect to their home internet with it.

I wondered if it might be the case that the neighbour has at some point in the past filled in a similar form on the same web site which has caused her details to be added to a data base, and linked with the email address, and when my mum clicked on the link in the email, those details were linked in and hence filled in on the form?

This. I would never use WEP after a mate showed me how to crack it lol. Also maybe consider hiding the SSID so it just appears as 'Unnamed Network' when searched for so you actually have to type in the network name in order for it to connect in the first place ;)

That's a good idea! Think i'll give that a go!
 
Back
Top Bottom