Story image

Warbiking tour reveals the Aussie city with stellar WiFi security

07 Feb 2018

Perth might just have some of the best WiFi security in the country – so far – but security experts from Sophos say they hope to see the trend continue across Australia’s other major cities.

Security experts Chet Wisniewski and John Shier have conducted a two-day ‘warbiking’ exercise across the city.

They rode their computer-equipped bicycles with a mission: to expose unsecure wireless networks and dangerous user behaviours that hackers could exploit.

The bikes were equipped with passive scanning technology consisting of Raspberry Pis, external WiFi antennae, GPS antennae, a solar panel and some external batteries.

They found that out of the 7238 access points the pair surveyed, 94% of operators were operating WPA or WPA2 security protocols.

68% were using WPA2 security protocols, less than 2% were using WPA, less than 1% were using WEP and only 6% were using no security protocols at all.

They found that about 300 laptops, cars (including Ford and Audi), printers, PlayStations, ChromeCasts, Sonos, GoPros and other devices with ad-hoc networking enabled.

Organisations are also segmenting their WiFi networks for specific purposes such as corporate, guests and IoT.

There were also more than 125 manufacturers of APs across the city, which the Sophos experts say demonstrates diversity and inherent security against the same attack.

“Over the course of a couple of hours, we found over 70,000 data points each in Perth – that tells you the ubiquity of wireless in our major cities today,” Shier says.

“Individuals want to be connected at all times, but it is critical to understand the risks that come with connecting to unsecure networks, not to mention what can be hacked by outsiders.” 

Wisniewski adds that Perth seems to have some of the best security in any city Sophos has surveyed.

 “In Perth, 6 per cent of APs were left unencrypted, this is down from between 14 per cent and 28 per cent in other cities we’ve measured in the past, suggesting that we have largely eliminated networks that are open by mistake. Whilst WiFi encryption is only one part of online safety, it’s good to see the city taking it seriously – a trend we hope to see across our other major cities including Sydney, Melbourne, and Canberra,” he says.

We recently conducted an interview with Sophos A/NZ general manager Ashley Wearne to find out how it uses deep learning neural networks to boost security via artificial intelligence and machine learning. Read it here.

Seagate: Data trends, opportunities, and challenges at the edge
The development of edge technology and the rise of big data have brought many opportunities for data infrastructure companies to the fore.
Popular Android apps track users and violate Google's policies
Google has reportedly taken action against some of the violators.
How blockchain could help stop video piracy in its tracks
An Australian video tech firm has successfully tested a blockchain trial that could end up being a welcome relief for video creators and the fight against video piracy.
IBM X-Force Red & Qualys introduce automated patching
IBM X-Force Red and Qualys are declaring a war on unpatched systems, and they believe automation is the answer.
Micro Focus acquires Interset to improve predictive analytics
Interset utilises user and entity behavioural analytics (UEBA) and machine learning to give security professionals what they need to execute threat detection analysis.
Raising the stakes: McAfee’s predictions for cybersecurity
Security teams and solutions will have to contend with synergistic threats, increasingly backed by artificial intelligence to avoid detection.
Exclusive: Ping Identity on security risk mitigation
“Effective security controls are measured and defined by the direct mitigation of inherent and residual risk.”
CylancePROTECT now available on AWS Marketplace
Customers now have access to CylancePROTECT for AI-driven protection across all Windows, Mac, and Linux (including Amazon Linux) instances.