Winter 2010 > home > Features

Malicious intent

Wireless networks have changed the way we live, but staying constantly online doesn't come without risk

We live in an increasingly wireless world. Whether it’s an entrepreneur running a business from their local coffee shop, or someone simply browsing the web in front of the television, the internet has moved away from the desktop towards comfort and convenience.

With ease of use comes increased risk, however. Wi-Fi connections are particularly vulnerable to hacking, and when that happens, any personal or sensitive data held on a machine is there for the taking.

“Hacking a domestic wireless network is relatively easy, and all the instructions you need are available online,” says Ching Liu, IT Security Senior Consultant at Control Risks, an independent risk consultancy that provides services to all Hiscox Home Insurance clients.

Many homeowners make themselves particularly vulnerable to hacking by leaving their default wireless network connection identifier, also known as an SSID, visible for any other users to see. Hackers can then easily ascertain both the type and weaknesses of the wireless access point. Hiding the SSID is a deterrent to the casual snooper, but decent Wi-Fi scanner software will find hidden connections.

“If your security isn’t up to scratch due to either having no password or just a weak one, a snooper can connect and find out what devices are connected to your network,” Ching says. “A malicious hacker could either steal personal information or plant software that can attack other systems.”

An SSID is also easy to spoof. When you look for a wireless connection in a public place and are presented with a number of choices, one or more of them may be fakes. They are designed to lure you into connecting in order to possibly perform malicious activities, such as taking information from your machine. Internet facilities that web users are likely to recognise, such as BT OpenZone or Free Wi-Fi, are commonly impersonated.

“You might not realise that you are actually connecting to another computer that’s scanning your device and taking information,” Ching says. “The problem is greatest where there’s a large concentration of people using laptops, such as an airport terminal or business conference.”

However, as Wi-Fi rapidly becomes the default way UK homeowners use the internet, protection is improving. Manufacturers are getting better at building protection into wireless network routers, but most measures are fairly easy for an experienced hacker to deal with.

“Security has got stronger recently,” says Ching, “but hackers will always try to find a back door. Simple passwords can be forced open by anyone with enough patience, so password strength is really important.”

Hiscox high value home insurance customers are covered for up to £50,000 against identity theft, but home network owners should still be vigilant, says Austyn Tusler, Head of Art and Private Client at Hiscox.

“In urban areas especially, there are large numbers of wireless connections and protection’s not that strong,” he says. “There are still breaches in security and customers have to be tight in managing their networks.”