NZCyberResearchCenter

Security Breaches Around Us !!

I was asked by a friend to help safeguard his mobile phone and laptop after someone attempted to steal his banking information. This involved enhancing the security of his Windows operating system, router, and laptop. However, it’s important to note that human behavior plays a crucial role in online safety. For instance, not all emails received are legitimate and some may be sent to millions by cybercriminals who wait for a response.

To investigate the problems and solutions related to private and public WIFI networks, I conducted a thorough research process that involved testing and collecting information about routers in a controlled setting. Specifically, I analyzed the Linksys EA series, as well as routers from Huawei and other brands that are provided by internet service providers. To aid in this analysis, I utilized Kali tools.

If routers are not configured correctly, cracking passwords can be an easy task for criminals. I discovered that for certain routers, a simple Google search can yield passwords that grant access to the network. This observation was made during my assessment of the router’s security and performance issues.

In tests, I found strong encryption and lengthy password is the key that stops criminals to enter the network. unless you close all other doors. patch the router whenever the manufacturer releases the updates. Some of the encryption (wpa2) methods protect better than others (web) with a strong password.

The above lab screenshots display a weak password cracked using the aircrack tool

Even better encryption with a weak password may not help much.

While having a strong password is important, it can be difficult to remember all of them, especially considering the numerous applications and URLs that require logins, ranging from children to cryptocurrency miners. A password manager can assist in this regard, enabling us to create and store strong passwords securely, thus enhancing the protection of our private information.

There are several password managers available in the market that are effective and free for personal use. I have personally tested BitWarden and Dashlane, both of which offer reliable password management solutions. You no longer need to remember all your passwords, as they handle the logins on your behalf, requiring only your master password to access the stored passwords.

Password manager – a few features below:

Generate strong password

Support MFA

Password Audit

Auto-login with the master key

A secure password – Anywhere access – Store online/Offline

While securing routers and other logins can provide a degree of protection, it’s essential to consider the broader context of your private and public network environment. Examining your entire network, including your IoT devices, can be beneficial in enhancing security.

Windows Hardening:

Certain network security measures are simple enough for the average user to implement, while others may require the assistance of professionals to customize and automate certain features, such as operating system updates, application updates, antivirus updates, and imposing restrictions on the home network. Other measures that may require expert assistance include parental controls and closing all loopholes in the network entry point, as well as implementing MAC address filtering.

Upgrade OS and configure Auto-update.

Install and configure the Anti-Virus product

Regular data backup (offline / online)

Remove unwanted software from your computer

Update browsers

Some are worth using for browsers such as HTTPS-everywhere – Which will add security to your browser.

DuckduckGo – If you like more privacy then add it to your browser

Tor browser – for complete privacy

Leave it for professionals to do the below list, If you’re not familiar:

“Some internet providers may able to configure a router for you at free of cost ” chat and find what they got for you to configure.

Firmware update for PC, laptop, Router, and IoT devices.

Configuring security features in router – Ex: Mac address filtering, Firmware update, Parental control, change default logins, Do not Publish SSID, better encryption method and possibly close the unused ports and set the internet availability in the router and disable remote access, enable router firewall. security features may vary due to brand and model.

The most critical aspect of security is human behavior since even minor mistakes can enable criminals to infiltrate your network, regardless of whether advanced security measures are in place.