Wireless Router Hacking

[cameraman2007]

Hello all, so i live 200 miles away from my girlfriend and see her on a month to month basis, a month ago someone hacked into my aol account and changed my password and a day later hacked my instagram. That day i get my aol email back and my recent activity showed that someone from my girlfriends router was logged into my email and it wasn't her. They also logged into my gmail form her router. Also the person hacked her gmail and yahoo email and shut down her instagram and twitter, took her 2 days to get everything back. I and her changed all of our passwords and she changed her wireless network name which was ("HER NAME" 123) a given for a stalker i know, and she changed her password on that router. (PLEASE KEEP IN MIND ALL THE HACKINGS HAVE BEEN SHOWING UP VIA HER ROUTER LATE AT NIGHT) Before the hacking began, about a week before someone from a generic insagram account that is now shut down left messages talking about me and my girl and tagging her in the comments and all this stuff, also the day of the hacking the person who hacked my instagram (i know this because i got a email saying a email address was changed to the same address that was used to email me) the person wrote things basically repeating what they said on my instagram comments... So its been 3 weeks since thats happened or so. I just got back from seeing my girlfriend 2 days ago and this morning when i woke up instagram asked me to log in (which means my password was changed or account shut down). sure enough my instagram was locked out once again. I checked my gmail recent activities and sure enough.... someone logged into my gmail account at 12am last night and 2am.... I am a photographer/director of a popular growing music group and my girlfriend is a upcoming model so i think its a fan playing around so I'm not too "worried" but i do want to fix this issue. Whats going on here and how can i prevent this person from accessing which seems to be our networks via her router? Thank you!

 

[Tradesman1]

Most routers themselves have a user ID and password - like Admin-Admin (a default) have you changed that

 

[Lutfij]

Usually setting passwords to something that can be remembered by you and only you is the best route to take since a person who has nothing better to do can use illegal means to retrieve your password and it is thus advised to keep away from words found in a dictionary or somethings that are a dead giveaway.

Scribble the password on a piece of paper and have it stowed away in a book or maybe a small driver booklet which you can refer back to in case you forget it.

This leads me to ask you one more question, have you tried changing the password on all your accounts? Seems weird that a person can go through all of your accounts unimpeded aside from you being notified.

 

[cameraman2007]

Usually setting passwords to something that can be remembered by you and only you is the best route to take since a person who has nothing better to do can use illegal means to retrieve your password and it is thus advised to keep away from words found in a dictionary or somethings that are a dead giveaway.

Scribble the password on a piece of paper and have it stowed away in a book or maybe a small driver booklet which you can refer back to in case you forget it.

This leads me to ask you one more question, have you tried changing the password on all your accounts? Seems weird that a person can go through all of your accounts unimpeded aside from you being notified.

Yea we changed the password every password that got hacked and even all the others and network name.... we changed it to basically a hole bunch of birth dates put together and passwords was a series of phone numbers scrambled together so the hacker couldn't of guessed it. Is there anything else it could be?

 

[cameraman2007]

Most routers themselves have a user ID and password - like Admin-Admin (a default) have you changed that

Yes we changed it to a bunch of birth dates and passwords to something just as complicated. Is there anything else that it could be?

 

[Tradesman1]

Checked for Malware? RootKits? Keyloggers? Try running MalwareBytes and Spybot (both free versions)

 

[cameraman2007]

Checked for Malware? RootKits? Keyloggers? Try running MalwareBytes and Spybot (both free versions)

Ok thanks a lot ill try and see if i can have her run it.

 

[HyNrgy]

i noticed you said they connected to your router.

Suggestion, hard reset your router (verify by manufacturer) but most if you hold a pen or paper clip or something in the tiny reset button for a solid 60 seconds will reset to out of the box (minus firmware update). I say this because if they did hack the router they could have all information sent through the router forwarded to them. After you reset and during setup, change the admin password from the default one.

Also do not use WEP if possible it can be cracked in about 10 minutes. Preference is WPA2 which is severly much harder since you can do lower case, upper case, numeric and some symbols. If you are using just numbers with dates combined and all, change that too. Numbers only give a base 10 by the number of numbers. When you add lower, upper, number (not counting symbols) you change to a base 62. Which theoretically gives you about 200 trillion combos for just 8 characters but I prefer at least 8. With WEP even at 10 you only have 1 billion.

SORRY for the rant on wep/wpa. I have had to help too many people with issues with wep versus wpa2...and im tired LOL

PS. if you do reset/reconfigure router, change all passwords again just incase

 

[cameraman2007]

I accidentally hit the solve button -_- But thank u HyNrgy. Yes the IP address is coming from her router/computer so its something on her end. Ill have her do all of this for sure and yes she used all numbers, i really didn't want her doing that but was to late when i found out. and yes I've been hearing about how weak WEP is for years now, thats the 1st thing that came to mind but she had it on WPA2 Personal the hole time but thank you anyways feel free to rant on i need all the help i can get!

 

[Alpha3031]

Also, if you don't use wps turn it off and try NOT to use personal information for passwords. Making them longer helps too.

 

[Lutfij]

Cameraman2007;
You may remove the selected answer and award if and when you think the thread has received a solution after all you are the Thread's OP so you decide who deserves best answer.

 

[cameraman2007]

Cameraman2007;
You may remove the selected answer and award if and when you think the thread has received a solution after all you are the Thread's OP so you decide who deserves best answer.

Thats the thing i can't find the undo button? lol

 

[HyNrgy]

Lutfij and cameraman2007....please take this in humor because it is meant that way and I am laughing.....

For a moment I felt like one of the medalist a while back.....hey, you won the gold.......welll, i would like to thank all my......what ..... you want it back....oh snaps......LOL

it's all good as long as his and his lady get peace of mind back and issues resolved....whoever helps....that is what the forums are for.

 

[Lutfij]

It's alright ! For the time being, lets get back on topic:

OP, have you made any breakthrough's?

 

[cameraman2007]

Lutfij and cameraman2007....please take this in humor because it is meant that way and I am laughing.....

For a moment I felt like one of the medalist a while back.....hey, you won the gold.......welll, i would like to thank all my......what ..... you want it back....oh snaps......LOL

it's all good as long as his and his lady get peace of mind back and issues resolved....whoever helps....that is what the forums are for.

Haha, you have helped the most so far so you probably did deserve it.

 

[cameraman2007]

It's alright ! For the time being, lets get back on topic:

OP, have you made any breakthrough's?

Yes her brother is a computer tech and he found a key logger so he is wiping the computer now and she's doing a factory reset on her router and setting it up as suggested.

last year she had a random tech guy fix her computer of viruses so I'm curious if it was him or an over the air key logger attack

 

[Lutfij]

I'd suspect the random guy since you did mention your GF is a model, could be a secret admirer perhaps. Pun intended, but I hope this experience has given you some pointers to help you prevent such a situation from recurring...

Password
Security level
Firewalls
and non trusted software use.

^ should be a check list you should sticky to your screen bezel

 

[HyNrgy]

if you or her are comfortable as Lutfij said, firewall. Some (even free) you can set from beginning to let you choose what to allow (not smart scan) to enter and exit your computer to the internet. At first it could be daunting because it will alert you so much very often to "learn", but later you will not notice it. Only issue is that sometimes you will not know what what the actual process is that is trying to get permission and may have to look it up so you do not disallow the wrong thing.

A couple of free programs I have and still use are Comodo firewall and Online Armour.

As far as antivirus also have a antimalware program and run full scans once a week or two at the least. yes, real time is good but a full scan is great to add.