Push Button WiFi Flaw Just Got Worse

Damn. Is nothing safe any more?

Next, you'll be telling us there's some guy at the post office reading my post cards.

Mac

Never trusted WPS. Turned it off in the router as I was setting it up on the day I bought it. When it comes to security the best way is to do some research and learn how to configure routers manually. One button methods have been suspect since their inception. My lack of trust in them is confirmed again!

I have two routers, my cable access initially goes into a router that does not appear to have WPS that is the one my computer is connected to. The second is a router for cable TV and connects from the first one, this TV router does have WPS and I don't know if I turned it on. In any case I have TV and computer hard wired and WiFi is turned off on my computer. What is my vulnerability status with this set up?

EDITOR'S NOTE: If the wifi is enabled on the second router, then it could be vulnerable. I'd advise turning off the wifi on both routers (or at a minimum, disabling WPS) if you don't need it.

What would you recommend we do if the router doesn't belong to us, I.E., the Cable Company? One would hope the Cable company would have addressed the issue long ago, but how do we know?

EDITOR'S NOTE: It doesn't matter who owns or rents the router. If it has WPS enabled, you should turn WPS off.

I long ago manually configured my router to only accept specific MAC addresses (and I'm not using WPS). This usually isn't that hard to do, but you have to get the MAC address for each device to add it. It's a bit of a pain when adding some new device, but it requires anyone who wants to use MY network to ask me how to access it. I've been known to tell rude visitors who come to "visit" and then want to sit and stare at a screen that we don't have Internet access. Sorry, guess you'll just have to learn the art of conversation. ;-)

I learned very early about the WPS Pin vulnerability. I keep it disabled and create my own letter, number, symbol combination Pass Keys to connect to my WiFi. I also change it at least twice yearly. I have an indexed record of emails, sites and so many passwords/codes that it would be humanly impossible to remember them all without having them written down on paper in a book and tucked away.

I have found that if I want to really know about Internet/WiFi vulnerabilities to contact a Hacker or two. But don't use your own computer to do it :) Use a public free computer like at the library to chat with a Hacker and use an online email service just for that purpose.

Thank you Bob for the ongoing articles, information, knowledge and updates. I have garnered a great deal of my Internet and computer wisdom from your articles.

I am not a very literate router user. I have a cheap one hooked to my PC that I use to download books from Amazon to my Kindle. The label on the router has WPS PIN #. I looked at my setup and it lists my security as WPA. Is that safer than WPS?

WPS, did not know it at all, thanks

Not just WPS. You should also disable Remote Management and UPnP while you're at it. These can also make a router vulnerable to exploits.

Well, it's obvious now that nobody should be writing the phrase 'WiFi "Protected" Setup' without the scare quotes.

I was using a Linksys WRT110 router up until last night. After a lot of reseaarch I found out that my router is one of those that cannot disable the WPS function and as far as I can find out there is no firmware upgrade to defeat it. There is an upgrade (Tomato) that can be used on some Linksys routers but if it is used it voids the warranty. Info. on WPS is very slim to none. I switched out to a Trendnet router that I had for backup and it has a disable button for the WPS.