Spyware, Viruses, & Security forum

General discussion

Is there a new Wifi hack tool out? WEP+MAC Filter failures.

by R. Proffitt Forum moderator / April 11, 2007 10:26 PM PDT

I just ran into a Wifi network failure and tracked it down to someone hijacking a wifi network connection. Until this I had successfully configured some nets to use WEP plus MAC filtering and never had an issue. But that appears to have some tool to crack that in minutes now.

I tested it and got real lucky that the bad person was hacking while I was able to reconfigure the wifi router. I discovered they were able to sniff out a good MAC and then they would crack the WEP then set their MAC to an allowed address.

What amazed me was they did this in just a few minutes after I changed the routers SSID, WEP password and the client's MAC address. So we had to move to WPA and that seems to have cured that one.

The only reason we had left a few routers back on WEP+MAC security was some hardware that wasn't up to the task of WPA.

It looks like something new is out so if someone knows more a post in the Security forum would be nice to see. But the lesson is learned that WEP is soundly dead. Even with SSID off and MAC filters. It's dead Jim.

But here's my question. Does anyone know if a new Wifi crack tool is out and about? My bet is it must be some pushbutton simple thing since the attack was so fast that the old method I knew of where the WEP attack was 10 minutes and a minute to change the MAC (or a little less.)


PS. Just for completeness if you are supporting wifi networks, if what I'm seeing get's out there you will get many calls about failing to connect, "it worked fine before", and other such statements when the security is less than WPA. It's only been a few days since this incident but it has soundly moved me to write that WEP is no longer an option if we added MAC filtering. I knew it wasn't bulletproof but until now they didn't have the right bullets.

Discussion is locked
You are posting a reply to: Is there a new Wifi hack tool out? WEP+MAC Filter failures.
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: Is there a new Wifi hack tool out? WEP+MAC Filter failures.
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Donna Mentioned Such A Problem Recently
by Grif Thomas Forum moderator / April 12, 2007 1:21 AM PDT
Collapse -
Thanks Grif for pointing to the news and the other source
by Donna Buenaventura / April 12, 2007 2:01 AM PDT

I started using wifi/router early of 2006 and before I decided to buy one, I look up for router that is WPA and WPA2 support. And when I found one in Linksys.com, I grab it. I never try WEP configuration. I choose WPA2 too and using very long passphrase.

Collapse -
I've seen that. This tool appears to be better than all.
by R. Proffitt Forum moderator / April 12, 2007 2:07 AM PDT

Not only were they picking up the WEP in minutes (2 or 3) but whatever it was had a new capability to pick out the MAC address and spoof that as well to complete the connection. It was much too fast for the usual 2 tools I've seen out on the net so I brought it up here.

-> What this means is WEP is not only dead, but MAC filters along with it. For years that worked.

It means that some old equipment is going to have to be replaced but at least I helped them eek out 2 or more years before it had to go.

Thanks for the notes,


Collapse -
Similar tool is found vulnerable :-D

aircrack-ptw which is the new tool is they said similar to aircrack-ng. aircrack-ng has security hole and the devs will have to fix:

-> What this means is WEP is not only dead, but MAC filters along with it. For years that worked.
Too bad, 64-bit of some system is not WPA/WPA2 capable. 64-bit users stucked with WEP and try to continue to hardened the network in different ways Sad

Collapse -
Sorry for missing part of the info.

Hi Bob,
Thank you. I am really impressed by your logical approach to the issue.
I live in a rural area, in an old English village where I did not feel the need of hifi security. I did not have any security on for my router. Besides while setting up the router, every time I put the security on I had problems with signals.(four years ago).

I shall indeed go to the next town (Sheffield) and try my MacBook at a hotspot.
I am still in touch with the Apple Telephone help line.
Should I download the update for the router?

Popular Forums
Computer Help 51,912 discussions
Computer Newbies 10,498 discussions
Laptops 20,411 discussions
Security 30,882 discussions
TVs & Home Theaters 21,253 discussions
Windows 10 1,672 discussions
Phones 16,494 discussions
Windows 7 7,855 discussions
Networking & Wireless 15,504 discussions


Samsung Galaxy S8's major makeover

This year's flagship phone gets a sexy new design and Bixby, a house-made digital assistant.