Someone is hacking my wifi

[tedjani]

ok there is a guy that keeps hacking my wifi no matter what password i do is there a why that i can block him from his ip or computer name help me please

my settings are

WPA2-PSK

i don't know how is doing it i mean my passsword is really long :Life isn't about waiting for the storm to pass, it's about learning to dance in the rain

HELP ME

[Levent]

block his mac id. or convert your network into whitelisted one so only allowed mac id's can join , thats what i do and i dont even have a password on the network

[helping]

Set your SSID to not broadcast, set a MAC address filter, change your default router gateway and default password and login credentials. It would be very difficult to sniff passwords from a router that doesn't even broadcast an SSID as long as you change it.  

 

Mac address is easy to spoof but he's going to seriously have to jump through some hoops to do all of that

 

Alternatively, you could let him and and set QoS to his IP to throttle the hell out of him

[Cacao]

I don't think publicly announcing your wifi password helps much

 

Anyway there should be some sort of setting in your router that will require you to accept whoever wants to join your network, that way only devices that you authorize can connect. 

[LonliestofAll]

check your password here: https://howsecureismypassword.net/

[Missioncode]

Also if you change the wifi password make sure to do if from a wired location its easy to sniff network traffic for passwords. 

[Godlygamer23]

Before you hide your SSID, change it. Or he can just search it and connect to the router anyways.

[tedjani]

Set your SSID to not broadcast, set a MAC address filter, change your default router gateway and default password and login credentials. It would be very difficult to sniff passwords from a router that doesn't even broadcast an SSID. 

 

Mac address is easy to spoof but he's going to seriously have to jump through some hoops to do all of that

 

Alternatively, you could let him and and set QoS to his IP to throttle the hell out of him

how did he do it hacking my wifi password so fast is there a way to do that i thought it take you weeks to hack a wifi password like this

[Ssoele]

With WPA2-PSK, if your password is cracked once, it is easy to get the master key and hack it again in a few minutes if the password is changes. Not much you can do about this, a WPA2-PSK password can be cracked within 24 hours most of the time (if you don't have the master key already). Only way to block this is to use WPA2 Enterprise, but you would need an extra RADIUS server for this and this is pretty much overkill.

[helping]

how did he do it hacking my wifi password so fast is there a way to do that i thought it take you weeks to hack a wifi password like this

I'm not really familiar, but I believe it works by network packet sniffing, not brute forcing which would indeed take bloody ages.

 

Basically it analyzes data to decrypt

[ToToRoTY]

The usual 3 tricks.

i). Turn the wireless AP off, connect via lan, and config a WPA2-PSK

ii). Turn off SSID broadcasting

iii). Setup MAC address filtering

[Glenwing]

Filter by MAC address so only your devices can connect.  He can spoof the MAC address but he wouldn't be able to connect even if he did unless one of the allowed addresses is disconnected from the network.  As long as your devices stay on the network you'd be fine.

 

If he knows what he's doing SSID broadcasting and MAC address filtering won't be a hard counter, since there are tools that can easily find any available wireless networks even if they aren't broadcasting, and MAC addresses can be found by listening in to the network traffic, and then spoofed from there.  But, MAC address filtering will only allow one device per MAC address.

[Carter]

or troll him for a bit...

http://lifehacker.com/190441/turn-your-wifi-piggybackers-internet-upside-down

or set it up to direct all traffic to a random site.

but yea, block his mac or whitelist is even better

[LAwLz]

Are you sure he is actually getting into your network? As far as I know, WPA2 is really really tough so the risk that he actually obtained the key and got into the network should be fairly small. My guess is that you got a keylogger on your computer or he is obtaining the password somehow (from social engineering).

 

If he is smart enough to get around WPA2 then MAC-filtering won't work, nor will hiding your SSID.

 

 

Filter by MAC address so only your devices can connect.  He can spoof the MAC address but he wouldn't be able to connect even if he did unless one of the allowed addresses is disconnected from the network.  As long as your devices stay on the network you'd be fine.

 

But, MAC address filtering will only allow one device per MAC address.

Are you sure? I haven't tried it but I don't see how something like that would be implemented in the router. I mean, as far as I know there is nothing hindering multiple devices on the same wireless network to have the same MAC address. Hell, you can even connect several devices with the same MAC address on a switch (and only the one that connected last would work properly).

[tom564]

Make sure that WPS is disabled especially the pin based one. 

[neon]

Hard reset your router, so it is essentially brand new out of the box, log into the router via wired connection, and set it up, check it is on the latest firmware, change your admin password, and change your LAN IP address from the default (ie instead of 192.168.1.1, change it to 192.168.44.1), set the WiFi up as WPA2 AES use a random SSID and for the PSK use a very long random character string (you could use something like Keepass to generate a good passwords and an SSID and remember it so you don't have to type it out), turn off any WPS feature (called different things on different routers, which can be hacked) and turn of UPnP.

 

You do not need to hide SSID or set up MAC filtering they will do nothing for network security, just make sure you use

• a unique SSID
• an extremely good random PSK
• a very good random admin password
• turn off WPS and UPnP

 

After that virus scan your computer(s) to be sure he didn't hack them.

 

What is the exact router you are using? some even if you disable WPS it is still on which still means it is vulnerable, but assuming yours isn't one then there should be no way he can hack that.

[solomongrundy]

ok there is a guy that keeps hacking my wifi no matter what password i do is there a why that i can block him from his ip or computer name help me please

my settings are

WPA2-PSK

i don't know how is doing it i mean my passsword is really long :Life isn't about waiting for the storm to pass, it's about learning to dance in the rain

HELP ME

What makes you think somebody's hacking your router?

[Lord Pantaloons]

[Ssoele]

What you could do is get a new router and hide it's SSID, then just disconnect the old one from the network but leave it on, so he just won't have a connection to the internet.

[LAwLz]

Hard reset your router, so it is essentially brand new out of the box, log into the router via wired connection, and set it up, check it is on the latest firmware, change your admin password, and change your LAN IP address from the default (ie instead of 192.168.1.1, change it to 192.168.44.1), set the WiFi up as WPA2 AES use a random SSID and for the PSK use a very long random character string (you could use something like Keepass to generate a good passwords and an SSID and remember it so you don't have to type it out), turn off any WPS feature (called different things on different routers, which can be hacked) and turn of UPnP.

 

You do not need to hide SSID or set up MAC filtering they will do nothing for network security, just make sure you use

• a unique SSID
• an extremely good random PSK
• a very good random admin password
• turn off WPS and UPnP

 

After that virus scan your computer(s) to be sure he didn't hack them.

 

What is the exact router you are using? some even if you disable WPS it is still on which still means it is vulnerable, but assuming yours isn't one then there should be no way he can hack that.

You don't even need a unique SSID, just change to something other than default (and even something like adding a 1 would be enough). Anything more won't increase security at all. The reason is because the master key uses the SSID as kind of a salt, so some ranbow tables takes that into consideration. Just change your SSID to whatever and it will break all those rainbow tables.

[Blade of Grass]

What you could do is get a new router and hide it's SSID, then just disconnect the old one from the network but leave it on, so he just won't have a connection to the internet.

There is no point in hiding the SSID.

http://www.howtogeek.com/howto/28653/debunking-myths-is-hiding-your-wireless-ssid-really-more-secure/

[Ssoele]

There is no point in hiding the SSID.

http://www.howtogeek.com/howto/28653/debunking-myths-is-hiding-your-wireless-ssid-really-more-secure/

 

This together with all the other things people already said.

[urworstnit3m3r]

Set your SSID to not broadcast, set a MAC address filter, change your default router gateway and default password and login credentials. It would be very difficult to sniff passwords from a router that doesn't even broadcast an SSID as long as you change it.  

 

Mac address is easy to spoof but he's going to seriously have to jump through some hoops to do all of that

 

Alternatively, you could let him and and set QoS to his IP to throttle the hell out of him

To note your first sentence. it is not hard to get into a router that is not broadcasting an ssid, it doesn't matter whether it is or not. the best way would be to ether block his mac id or like others have said to white-list your mac id's.

[Blade of Grass]

To note your first sentence. it is not hard to get into a router that is not broadcasting an ssid, it doesn't matter whether it is or not. the best way would be to ether block his mac id or like others have said to white-list your mac id's.

But that too can easily bypassed.

http://www.securitytube.net/video/7642

[urworstnit3m3r]

But that too can easily bypassed.

http://www.securitytube.net/video/7642

Oh yea, I totally forgot about that,