Spyware, Viruses, & Security forum

General discussion

Is there a new Wifi hack tool out? WEP+MAC Filter failures.

by R. Proffitt Forum moderator / April 11, 2007 10:26 PM PDT

I just ran into a Wifi network failure and tracked it down to someone hijacking a wifi network connection. Until this I had successfully configured some nets to use WEP plus MAC filtering and never had an issue. But that appears to have some tool to crack that in minutes now.

I tested it and got real lucky that the bad person was hacking while I was able to reconfigure the wifi router. I discovered they were able to sniff out a good MAC and then they would crack the WEP then set their MAC to an allowed address.

What amazed me was they did this in just a few minutes after I changed the routers SSID, WEP password and the client's MAC address. So we had to move to WPA and that seems to have cured that one.

The only reason we had left a few routers back on WEP+MAC security was some hardware that wasn't up to the task of WPA.

It looks like something new is out so if someone knows more a post in the Security forum would be nice to see. But the lesson is learned that WEP is soundly dead. Even with SSID off and MAC filters. It's dead Jim.

But here's my question. Does anyone know if a new Wifi crack tool is out and about? My bet is it must be some pushbutton simple thing since the attack was so fast that the old method I knew of where the WEP attack was 10 minutes and a minute to change the MAC (or a little less.)

Bob

PS. Just for completeness if you are supporting wifi networks, if what I'm seeing get's out there you will get many calls about failing to connect, "it worked fine before", and other such statements when the security is less than WPA. It's only been a few days since this incident but it has soundly moved me to write that WEP is no longer an option if we added MAC filtering. I knew it wasn't bulletproof but until now they didn't have the right bullets.

Post a reply
Discussion is locked
You are posting a reply to: Is there a new Wifi hack tool out? WEP+MAC Filter failures.
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Is there a new Wifi hack tool out? WEP+MAC Filter failures.
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Donna Mentioned Such A Problem Recently
by Grif Thomas Forum moderator / April 12, 2007 1:21 AM PDT
Collapse -
Thanks Grif for pointing to the news and the other source
by Donna Buenaventura / April 12, 2007 2:01 AM PDT

I started using wifi/router early of 2006 and before I decided to buy one, I look up for router that is WPA and WPA2 support. And when I found one in Linksys.com, I grab it. I never try WEP configuration. I choose WPA2 too and using very long passphrase.

Collapse -
I've seen that. This tool appears to be better than all.
by R. Proffitt Forum moderator / April 12, 2007 2:07 AM PDT

Not only were they picking up the WEP in minutes (2 or 3) but whatever it was had a new capability to pick out the MAC address and spoof that as well to complete the connection. It was much too fast for the usual 2 tools I've seen out on the net so I brought it up here.

-> What this means is WEP is not only dead, but MAC filters along with it. For years that worked.

It means that some old equipment is going to have to be replaced but at least I helped them eek out 2 or more years before it had to go.

Thanks for the notes,

bob

Collapse -
Similar tool is found vulnerable :-D

aircrack-ptw which is the new tool is they said similar to aircrack-ng. aircrack-ng has security hole and the devs will have to fix:
http://secunia.com/advisories/24880/

-> What this means is WEP is not only dead, but MAC filters along with it. For years that worked.
Too bad, 64-bit of some system is not WPA/WPA2 capable. 64-bit users stucked with WEP and try to continue to hardened the network in different ways Sad

Collapse -
Sorry for missing part of the info.

Hi Bob,
Thank you. I am really impressed by your logical approach to the issue.
I live in a rural area, in an old English village where I did not feel the need of hifi security. I did not have any security on for my router. Besides while setting up the router, every time I put the security on I had problems with signals.(four years ago).

I shall indeed go to the next town (Sheffield) and try my MacBook at a hotspot.
I am still in touch with the Apple Telephone help line.
Should I download the update for the router?
Shafiq

Popular Forums
icon
Computer Help 47,885 discussions
icon
Computer Newbies 10,322 discussions
icon
iPhones, iPods, & iPads 3,188 discussions
icon
Security 30,333 discussions
icon
TVs & Home Theaters 20,177 discussions
icon
HDTV Picture Setting 1,932 discussions
icon
Phones 15,713 discussions
icon
Windows 7 6,210 discussions
icon
Networking & Wireless 14,510 discussions

Big stars on small screens

Smosh tells CNET what it took to make it big online

Internet sensations Ian Hecox and Anthony Padilla discuss how YouTube has changed and why among all their goals, "real TV" isn't an ambition.