Insertion attacks – These are the unauthorised devices on the wireless network without going through a security process. It is because perhaps there is no or low security password setting to secure the base station. Both the clients and base stations are likely to set the simple passwords that are easily cracked by hackers with bruteforce dictionary attack. Then the un-authorized client can easily intrude to the internal network. To prevent from the password cracked by hackers, the passwords must be at least 8 digits that are the combination of different alphabet and numbers.
Interception and monitoring wireless traffic attacks – Attackers can sniff, monitor and capture the network traffic with sniffer tools. It is possible to inject false traffic and hijack the victim’s session. To protect the sensitive and confidential data against stealing, do not let these data pass through the wireless network as possible.
Improper access point and client wireless configurations – Most of the hardware access point and client are at the least secure mode factory default. They remain at a high risk level unless the administrator change the setting. Therefore, all the settings must be re-configured to get lowest risk level to protect the access point and client.
WEP (Wired Equivalent Privacy) turn off – Most of public wireless LAN access points (i.e. airports, large shopping centres, hotels etc) do not enable WEP. Then the wireless clients cannot use the WEP encryption. The network will be sniffed and hijacked by attackers easily. Thus the WEP should be enabled to stop casual sniffers.
Jamming – Denial of service also attacks the wireless network traffic where legitimate traffic gets jammed due to overwhelming the frequencies by illegitimate traffic. Since the current popular wireless frequency is 802.11b that is using 2.4GHz, even the non-malicious intents such as Cordless phones, and Bluetooth using the same frequency may interfere the wireless network. To prevent the frequency of wireless network from interference of other devices, the standard of 802.11b is advised to upgrade to 802.11a or g that use higher and stable frequency.
Client to client attacks – The attacker may exploit any misconfigurations or vulnerabilities with another client by-passing the base station. The victim may also be flooded with bogus packets (creating a denial of service attack). Thereby, every wireless client should reinforce the security protection with better password setting and configuration.