Hacked

[magicman]

Hi guys,
I've got 3 telkom accounts, today I noticed that 2 of my accounts have been hacked into and my bandwidth gone both accounts have been activated between the 16th July and today. I regularly change my passwords.
I have a Premium Combo, What setting must I use for wireless, ie WEP or what,.
Telkom told me the password must be between 0 and 9 and A to F....no funny symbols.....is this correct
I'm going to report this to SAPS tomorrow, I want the f@cker.

Any suggestions on making my accounts safer.?

Thanks

 

[|tera|]

Do you have your default router password enabled or have you changed it?

WEP for wifi is the lowest scale of security and a quick google search for WEP cracking shows you how easy it is to get access to a network.

Use WPA encryption instead.

Enable your router firewall if it isn't

 

[PostmanPot]

Any suggestions on making my accounts safer.?

Yes - change your router login details. Until you've done that, changing the actual account passwords won't do any thing.

 

[RSkeens]

I regularly change my passwords.

Your ISP password or your router password? It would unfortunately make no difference if it was your ISP's password.

I think manufacturers should prevent someone from setting up a connection until they have changed their router password, due to all the threads of people just leaving their routers on default password and getting hacked.

Check your ISP's connection log for the perpetrator's line ID, as that will be needed for the criminal case. Also remember to get as much log information as you can, as you will need proof. This log information will be from the connection history from your ISP as well as data from your router's logs.

 

[magicman]

Thanks for the replies. I changed my router password the day I got my router, and I change it regularly.

Where would I find the guys line ID and router logs

 

[The_Unbeliever]

WPA is not safe anymore

coWPAtty does a good job at cracking WPA passwords

 

[|tera|]

WPA is not safe anymore

coWPAtty does a good job at cracking WPA passwords

As I can see (didn't look long) that's for TKIP, what about AES, that's what I use

 

[The_Unbeliever]

As I can see (didn't look long) that's for TKIP, what about AES, that's what I use

But great fun can be had with this

Rogue BOFH's will redirect any illegal access to shock sites (like goatse etc) whilst the majority will just prefer to redirect it to kittenwar (or some other nonsense site)

 

[|tera|]

But great fun can be had with this

Rogue BOFH's will redirect any illegal access to shock sites (like goatse etc) whilst the majority will just prefer to redirect it to kittenwar (or some other nonsense site)

I remember you posted that about a year or two ago, it's still funnnheeee

 

[bwana]

WPA is not safe anymore

coWPAtty does a good job at cracking WPA passwords

I'm confused - I thought coWPAtty utilised a dictionary attack? Surely it helps if you have a strong password?

 

[|tera|]

I don't really have to worry about our wifi getting hacked, I live on a farm and it's almost 1.5km to the nearest building, I bet my router isn't that good, lol.

 

[magicman]

Guys, you should see the look on a policemans face when you report a case like this, eish

 

[Shake&Bake]

Guys, you should see the look on a policemans face when you report a case like this, eish

Thats the look right - eeiish! LoL- My bad! Only for fun kids!

 

[RSkeens]

Hi magicman,

You must then not use DHCP with your router - rather use static IP addresses (DHCP with wireless equipment is a big no-no lol).

Once you have done that, you must then enable MAC address filtering on your router - remember to add the systems that will be connecting to the router to the allow list.

Once that is done, change your router's password to a LONG password and change your encryption key (assuming it's a passphrase system) to another LONG one

Good luck!

 

[Splendid]

People get hold of telkom accounts very easily i have actaully been offered some before. I dont c how telkom can not track things like this and how the accounts can be leaked so easily

 

[hilton]

I'm confused - I thought coWPAtty utilised a dictionary attack? Surely it helps if you have a strong password?

Presactly. You have to be a moron NOT to use all 63 characters of the available PSK. Trust me, it will take a bit longer than what that site says to crack your PSK. Do the maths.

10 numerical characters
52 alpha characters
32 extended ACSII characters

grand total = 94

so 94 to the power of 63 is one huge number.

I can't even express this as something meaningful. Your little 'moms and pops' wifi router will not cope with all the hits so you'll certainly know some cray super computer is trying to hack your 1G prepaid Telkom account

 

[Ilitirit]

Surely you're relatively safe if your router only allows access to certain MAC addresses? (assuming noone knows those MAC addresses)

 

[shadow_man]

Surely you're relatively safe if your router only allows access to certain MAC addresses? (assuming noone knows those MAC addresses)

Nope - mac addresses can be spoofed really easily.

J

 

[RSkeens]

Nope - mac addresses can be spoofed really easily.

Yes they can be, once they spent ages attempting to gather it. I would still say it's one of the best additions for an already encrypted wireless network. It's incredibly powerful when it's used for wired networks. Above all just make sure you're using WPA2.

No security is infallible - it's about adding as many layers as possible and hindering productivity as little as possible.

 

[Gimaru]

What is to be done about this then? My parents are having their bandwith sapped over at their house and I'm no computer wiz. I'll go and change the router pass aswell in a bit for now.