Slashdot Mirror

← Back to Stories (view on slashdot.org)

Verizon MiFi Owned By Simple Attack

Posted by timothy on Wednesday February 3, 2010 @06:12AM from the changing-the-default-seems-smart dept.

Trailrunner7 writes "Security researcher Joshua Wright has developed a simple attack that allows him to recover the passwords for any Verizon MiFi device. The MiFi is essentially a tiny, portable wireless AP, and Wright's attack uses a simple and effective technique to get default passwords by using the device's SSID and some existing password attacks on the encryption protocols the MiFi employs. Result: complete 0wnage of any MiFi."

2 of 86 comments (clear)

Min score:

Reason:

Sort:

Re:Slightly misleading title by Overzeetop · 2010-02-03 06:26 · Score: 4, Funny

To clarify, this exploit is only for the configuration as shipped from the factory. Just like most consumer routers, you can reconfigure the SSID and WPA-PSK values via a web interface, but almost nobody does.
Fixed that for you. Yes, yes, people are getting better with their home routers. For most people, if you mention SSID and WPA-PSK, it will probably be countered with a WTF?

--
Is it just my observation, or are there way too many stupid people in the world?
Re:Gotta love the article by Anonymous Coward · 2010-02-03 06:48 · Score: 4, Funny

Nothing like watching script kiddies THINK they know what the router is, and bashing their heads trying to figure out why they can't get into what MUST be an unconfigured network.
Even better - get a plain linksys router, set it to factory default settings, but don't connect it to internet.
Script kiddies keep trying to figure out why they can't connect to the internet...