Feeds

Sydney wallows in cesspit of WiFi obsolescence and ignorance

World of Warbiking WiFi sniffing peloton finds lots of unsecured connections

Top 5 reasons to deploy VMware with Tegile

Sophos has brought its Raspberry-Pi-powered World of Warbiking WiFi-sniffing peloton to Sydney and found, as it does everywhere around the world, that some people just can't be bothered with WiFi security.

The Word of Warbiking sees Sophos' head of security research James Lynbe strap a Pi and various WiFi cards to his bicycle and then tour a city to get a feel for which versions of encryption are used by resident WiFi networks. In London, the penetrative peloton found 29.5 per cent were using either the dud Wired Equivalent Privacy (WEP) algorithm, or nothing.

Sydney fared a little better, with just 3.98 per cent running WEP and 23.85 running naked. Wi-Fi Protected Access II (WPA 2) was the most prevalent protocol, with 44.02 per cent of the 34.476 networks found along a 4.2 km route running through the central business district, over the Sydney Harbour Bridge and then through the posh urban enclave of Kirribilli.

Lyne opined, in a lamentably bacon-free post-ride briefing, that Sydney's results and those from around the world come about because some people fall through the cracks despite the security industry's ongoing attempts to scare their pants offeducate them about best practice. That's unhelpful, he said, because it means there's always someone out there running old and/or insecure kit that bad guys can exploit.

Happily, he went nowhere near the usual “Narco-terrorist money launderers are rummaging about in your bank's mainframe over WiFi, now” alarmism. Instead, he pointed out that the a good many people either read email or conduct online banking while using insecure WiFi connections, which presents all manner of opportunity for those who would seek to observe and take advantage of their behaviour.

Sophos' peloton has, to date, visited London, Hanoi, Las Vegas and San Francisco. Results from all cities are quite similar: there's a fair bit of WEP around the world, less WPA-2 and HTTPs than is sensible and a lot of people who either don't care or don't know to care about doing better. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
You really need to do some tech support for Aunty Agnes
Free anti-virus software, expires, stops updating and p0wns the world
Attack reveals 81 percent of Tor users but admins call for calm
Cisco Netflow a handy tool for cheapskate attackers
Privacy bods offer GOV SPY VICTIMS a FREE SPYWARE SNIFFER
Looks for gov malware that evades most antivirus
Patch NOW! Microsoft slings emergency bug fix at Windows admins
Vulnerability promotes lusers to domain overlords ... oops
Oi, Europe! Tell US feds to GTFO of our servers, say Microsoft and pals
By writing a really angry letter about how it's harming our cloud business, ta
prev story

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.
10 threats to successful enterprise endpoint backup
10 threats to a successful backup including issues with BYOD, slow backups and ineffective security.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Internet Security Threat Report 2014
An overview and analysis of the year in global threat activity: identify, analyze, and provide commentary on emerging trends in the dynamic threat landscape.