In recent days, there has been a sharp increase in the number of incidents related to Wi-Fi security in our country, mainly due to the seizure of users' network devices (routers and modems) and unwanted renaming of Wi-Fi networks.
The statement came from the Ministry of Transport, Communications and High Technologies (NRYT).
According to the report, the incidents are being investigated by the Electronic Security Service under the Ministry. The investigation revealed that the main reason for the attacks was the lack of simple security regulations for the security of network devices. Thus, standard and weak passwords for devices (admin, password, 12345, etc.), identifying information in network names (name, surname, phone number, address, etc.) were used, as well as software updates were not performed.
"So, all the devices in our house (phone, computer, smart devices, etc.) are connected to the Internet through a router device. "It is possible," the ministry said.
When a router is infected, malicious users can capture personal information by tracking user traffic, disable the router, and attack other devices on their network. That is why the security of the router is as important as the security of the computer.
The Electronic Security Service under the Ministry of Transport, Communications and High Technologies recommends citizens to make the following settings without wasting time:
To make the following settings, when your computer is connected to the router, you must enter the control panel by entering the router's IP address (usually shown on the back of the router) in a web browser. You will be asked for a username and password. This information can be obtained from the router's operating instructions or by searching the Internet for the manufacturer and model.
First, change the default username and password of the router. These passwords can be easily obtained from the Internet, depending on the model and manufacturer. For this reason, choose a long and complex password for your router (10-12 characters long, consisting of a combination of uppercase and lowercase letters, numbers and symbols) and do not share it with others.
Regularly update the router software. On the latest generation routers, the software is updated automatically, for older devices, the update must be done manually from time to time. Devices that do not accept the update must be replaced.
Turn off the Remote administration function and use a cable without physically connecting to your router to adjust router settings.
Encrypt your Wi-Fi network using the latest encryption standards (WPA2 or WPA3). If WPA2 is not available, the router must be replaced. When choosing a password for Wi-Fi, do not use consecutive numbers and buttons, your personal information. A complex password of 10-12 characters long, consisting of a combination of uppercase and lowercase letters, numbers and symbols, must be selected.
The Wi-Fi network name (ie SSID) should not contain any identifying information (name, address, phone number, physical addresses, etc.). Given that each router has its own vulnerabilities and are known to hackers, it is impossible to use standard network names.
It is recommended to activate the firewall on the router and modem, to disable the UPnP and WPS functions.
The password of the Wi-Fi network should not be shared with outsiders and should be updated regularly.
It is recommended to use the Guest network function. This allows you to segment your network and allow visitors to access only one segment of it.
All users are asked to take this issue seriously and make the settings as soon as possible. If you have any problems, you can contact the Internet service providers that configure the router.
If users have changed the name of the Wi-Fi network without notice or have any doubts about the infection of their routers, please contact the Electronic Security Service via the official website www.cert.az or [email protected], as well as social network accounts are asked.
In