News Hackers breach Wi-Fi network of U.S. firm from Russia — daisy chain attack jumps from network to network to gain access from thousands of miles away

[Admin]

Russian hackers compromised two different organization to attack the network of a third firm located across the road via Wi-Fi.

Hackers breach Wi-Fi network of U.S. firm from Russia — daisy chain attack jumps from network to network to gain access from thousands of miles away : Read more

 

[kjfatl]

I'm not a fan of useless government regulations. That said, all civilized nation should require a minimal level of security on wired and wireless networks. If any device does not meet this security level, it should not be recognized by the network. Practical implementation of this is not a trivial matter, but it can be done without effecting usability of the network. In fact is likely to improve network performance.

 

[nrdwka]

I'm not a fan of useless government regulations. That said, all civilized nation should require a minimal level of security on wired and wireless networks. If any device does not meet this security level, it should not be recognized by the network. Practical implementation of this is not a trivial matter, but it can be done without effecting usability of the network. In fact is likely to improve network performance.

The issue can EoL devices (as recent Dlink breach ).
There is high amount of not-up-to-date or EoL WiFi points around. And it is beyond reasonable expectation to have them all updated and, especially , replaced.

 

[jp7189]

I'm not a fan of useless government regulations. That said, all civilized nation should require a minimal level of security on wired and wireless networks. If any device does not meet this security level, it should not be recognized by the network. Practical implementation of this is not a trivial matter, but it can be done without effecting usability of the network. In fact is likely to improve network performance.

To protect against this you have to do multi factor on wifi, which basically means per device or per user certs, which requires a pki and an automated method of managing said certs. This is not trivial for many small companies.