NVIDIA Cards Used For WPA Hacking?

I have to admit, I was wondering when WPA was going to be seen as useless. This seems to confirm it for me, except that most people do not even know how to hack into a WEP network. So in reference to this article, yes, wifi is inherently insecure. Oh and a news flash – it has never been secure! Seriously, your data is readily available when not behind a VPN anyway. So really the down side here is that someone can get onto your network.

Now in situations where security for the user and the company they are working for is a factor, wireless is never really the best plan. Yet for most people, WPA remains plenty as most people are not going to run into a problem here. If there is a concern, use a VPN and stay wired – it is really simple.

What do you think, are we in real trouble here as NVIDIA cards can apparently be used for nefarious deeds? Hit the comments, share your thoughts.

Article Written by

  • Ken

    I think its scary….but then again people really dont care now a days and put their credit card number over unsecured networks

  • http://wp3.lockergnome.com/it/2008/10/10/nvidia-cards-used-for-wpa-hacking/ Bert Blink

    So are you saying that a Wireless Network using WPA2 with a 63Byte totally random keyword can be hacked into? Note the article makes no mention of specifics so I find it hard to take it very seriously.

  • http://www.matthartley.com Matt Hartley

    My understanding is it is basically brute force on speed.

    Use the card’s graphics’s chip processing power is where the magic happens.

  • Jeff

    Bert – ANY wireless network can be hacked. You can use WPA2, MAC address filtering, disable SSID broadcast, etc, etc, etc. If someone is determined enough, they will get in.

    However, for a home network, the likelyhood of someone taking the time to hack WPA2 is slim to none, when there are unsecured networks all over the place. The more security measures you put in place (listed above), the lower the chances of being hacked are. The only 100% foolproof way to keep people outside your office/home out is to not deploy wireless.

  • http://www.oxidns.com Claudio J Lacayo

    Possible solution : obtain a router that supports Radius, configure FreeRadius to handle the authentication. Simple.

  • GadgetNut

    As many follow-on posters there said, if the person trying to get into your network can already hack WEP, then measures like MAC address filtering and disabling SSID add *nothing* to your security. Everyone who doesn’t know better clings to the urban security myth that says “yes, but it helps.” No, it doesn’t. It costs you more time to implement it than it does for someone at this skill level to find it out and get through it anyway. Those only keep out the slacker hacker, and only for a few additional seconds. And slacker hackers don’t have the tools or inclination to work hard or long enough to hack WEP or WPA. At that point, they’re already using software tools that make both of those measures non-issues. Those suggestions are simply “security by obscurity” which is no security at all. It just makes your network harder for you to maintain. Don’t waste your time or effort on things that do not truly add to the level of security. AES encryption still hasn’t been “broken.” More than likely, many breaks are made possible from weak keys. If you aren’t yet using complex passwords that withstand simple dictionary attacks, or using complex passphrases, you deserve what happens to you.

    More importantly, the likelihood that someone is going to focus this kind of time or effort on your little piddly home network is small. The possible gain isn’t worth it. If you’re a large retail establishment, or institution passing lots of info with potential for profitable identity theft, it’s a higher threat.

  • Sean

    The warning is that for all intents and purposes, WPA2 is totally insecure for any business application. Thou shalt run a IPSec or SSL VPN connection to encrypt your data if you are using Wireless to transmit ANY sensitive data.

    Given time, 8 core processors and 6 GPUs, even this will be brute force attackable. :^)