GPU-Accelerated Wi-Fi password cracking goes mainstream

The once thought 8 character length password may no longer be safe, after the GPU-accelerated password recovery attack can break weak WPA/WPA-2 PSK passwords.

The Elcomsoft Wireless Security Auditor mentioned that its software can work completely off-line and find passwords by analyzing a dump of network communications, and display them in plain-text. The Wireless Security Auditor does require the source of a valid log of wireless communication.

Experts have urged IT managers to move from 8 character WMP passwords to 12 or 15, in a quote from David Hobson: "It's a wake-up call to IT managers, pure and simple. IT managers should now move to 12 and even 16 character keys as a matter of urgency. It's not very user-friendly, but the potential consequences of staying with eight character keys do not bear thinking about."

Places like Mumbai, India, have pushed law enforcement to take action with a wardriving police unit that locates insecure wireless networks, with laptops around the city, and notifies the owner of the network to secure their routers. Recent report suggestions that an estimated 88% of wireless networks in Mumbai are unsecured and encouraged police to take action to prevent the commission of a cognizable offence.

Report a problem with article
Previous Story

DTV likely delayed till June 12

Next Story

All My Movies v5.3

36 Comments

Commenting is disabled on this article.

I've never managed to do it, even using the tools used by security experts. More scare stories. If you apply for a job at my company, we give you a computer AND a password. We even allow employees to login via Terminal Services and VPN, over the internet. Another scare mongering non story...

Funny!

The chars are around 70, meaning the combinations are 70^8. When I calculated with 50 chars and a 8000 pass per sec i got 159 years if i have not mistaken something.

-Vivicidal- said,
Why does no-one use the full 63 charcters? I know I do!

because then you need to write it down, or save it in a text file for copy and paste, and that isn't very secure :P

what if the password is non-English word , wouldn't that raise the possibilities/ make it so hard ?

Brute force will eventually hit the right combination of letters. You only have 52^n combinations where n is the length of the key. This software is going through 3,144,000 combinations per minute. So yes, it makes it a tiny bit harder but not close to impossible like using random letters, numbers, and symbols @ a length of 63 characters.

brute force... so cant they just limit the number of attempts/timeframe rather than making sentence long passwords?? SHouldn't be that hard IMO, but im drunk so maybe im just not htinking clearyly

-nm am drunk, just reread the article and i understand now. crazy stuff

That detail must be awesome. War driving a major city basically surfing the net all day and still be called police detective. Mumbai has to worry about regulating their cell networks more than wi-fi.

I want try the trial out, but I need something to capture packets with, any suggestions?

Maybe something that works with the 4965AGN, or atheros chipset.

Intelman said,
I want try the trial out, but I need something to capture packets with, any suggestions?

Maybe something that works with the 4965AGN, or atheros chipset.


Commview for Wifi, Wireshark, there are lots of tools. Google for them.

PrEzi said,

Commview for Wifi, Wireshark, there are lots of tools. Google for them.

Actually Wireshark doesn't work afaik. It's not on their list of supported tools and Wireshark doesn't seem to have the ability to export the formats that this app requires.

In reply to the card needed..........it must support promiscuous mode. The Intel card only supports it in latest Linux Kernels. The intel 3945 doesn't support it at all (afaik). Atheros has supported it for years. As far as programs, Aircrack works great under Linux as does TCPdump. Both have been ported to Windows but you may need to find special drivers for your wireless card to get it in promiscuous mode under Windows. My suggestion is use Linux. You can always move the capture files to another platform to process if needed.

Digitalfox said,
Good question.. I was thinking the same..


It's the easiest to break.
You sniff up the network, find some MACs that connect to it and spoof it.
Bang ! You're in. Simple - ain't it ?
Did that in a few minutes.

PrEzi said,
It's the easiest to break.
You sniff up the network, find some MACs that connect to it and spoof it.
Bang ! You're in. Simple - ain't it ?
Did that in a few minutes.

MAC filtering will just give you a false sense of security. It should be banned because some people use it as the only security measure for their wireless network.

That is a good question, but hard to test, because the problem is $599. I think someone said something about a free trial, but not sure how the results will return.

The once thought 8 character length password may no longer be safe,

What exactly were you trying to say there, because that makes no sense?

It's easy to understand, it's just in Yoda speak. It should probably read, "The 8 character length password, once thought to be safe, may no longer be."

So basically it sniffs a few encrypted packets and then brute forces combinations until it gets a proper standard header from the packet?

Yikes... I think it's time to move on from words and start using sentences for our passwords lol

Tikitiki said,
So basically it sniffs a few encrypted packets and then brute forces combinations until it gets a proper standard header from the packet?

Yikes... I think it's time to move on from words and start using sentences for our passwords lol


no the program only brute forces. you need to capture the data packets with another tool. commview for wifi etc.....

Intelman said,
Yeah, so? ATI has a great lineup with the 4xxx.

Exactly (I own one) but I didn't think it will outperform 280's by a such large margin.

In Mumbai they warn you if your wireless is insecure, but in the UK they'd rather hack your wireless network to see if there is anything illegal there. Hmm.

in Windows 7 the router security stuff is cool, you can use the button (on new routers) to auto configure Windows 7 clients

Well if you have not heard about this before it's good to know.

I don't understand why people don't secure their networks and use a strong key. Like a 63 random alpha-numeric. That gives (52^63) = 1.283x10^108 combinatins if you exclude numbers.

xSuRgEx said,
this is old news same artical was posted on other security website's a week or so ago.

So what?
Glad to read about the steps taken in Mumbai.