Last week, anyone connecting to the public Wi-Fi provided at 20 of the UK’s largest train stations were greeted with an unpleasant surprise. Users were directed to a webpage displaying ‘We love you, Europe,’ and containing details of terrorist incidents in the UK and abroad.
Network Rail confirmed that the Wi-Fi systems were quickly taken offline to contain the attack and prevent further damage. A Network Rail spokesperson emphasised, “The Wi-Fi is provided by a third party, is self-contained and is a simple ‘click & connect’ service that doesn’t collect any personal data. Once our final security checks have been completed, we anticipate the service will be restored by the weekend.”
Wi-Fi services at all impacted stations were suspended for several hours due to the hack. British Transport Police (BTP) have subsequently arrested an employee of Global Reach Technologies, which provides internet access to some Network Rail station, on suspicion of computer misuse offences.
The authorities are also investigating the potential motives behind the attack and whether it was linked to any specific group or ideology.
Accessing free Wi-Fi is part of modern culture, whether people are travelling or simply going for a coffee. This incident has sparked debate on the safety of public Wi-Fi. Investing in a VPN is currently the safest way to browse using public Wi-Fi networks.
All organisations and individuals will also have their own Wi-Fi networks but what can they do to protect these networks from being exploited?
Secure Your Wi-Fi Network
The following steps outline controls and actions that you should implement:
- Change Default Login Credentials: The default username and password for your router may be accessible online. Change to a strong, unique password immediately after setting up your router.
- Enable WPA3 or WPA2 Encryption: Use the latest encryption standards like WPA3 (or WPA2 if unavailable). This ensures your data is securely encrypted, making it harder for hackers to intercept or access it.
- Use a Strong Wi-Fi Password: Create a long, complex password for your Wi-Fi network, combining uppercase and lowercase letters, numbers, and special characters. Avoid common words or phrases.
- Disable WPS (Wi-Fi Protected Setup): WPS can be vulnerable to brute-force attacks. Disabling it adds another layer of security.
- Update Router Firmware: Manufacturers release firmware updates to patch security vulnerabilities. Regularly check and update your router’s firmware to ensure it’s protected from the latest threats.
- Disable Remote Management: If you don’t need to access your router settings remotely, turn off remote management to prevent external attacks.
- Hide Your Network (SSID): Make your Wi-Fi network name (SSID) hidden, so it won’t appear on nearby devices. This won’t stop determined hackers but can deter casual attempts.
- Enable a Guest Network: If you have guests, create a separate guest network. This keeps your main network more secure by limiting access to your devices.
- Monitor Connected Devices: Regularly check for unfamiliar devices connected to your network. If you spot something suspicious, change your password immediately.