can you recommend any (opensource or trusted) android apps to check who’s using your wifi? or any cmd prompt code to search on the desktop?

a small doubt: can anyone hack your computer through WiFi? If so, How to prevent that (or) How to take measures after you think you been hacked?

  • slazer2au@lemmy.world
    link
    fedilink
    arrow-up
    6
    ·
    1 year ago

    Your best bet is to log into your modem and look at the ARP table to see what devices have recently talked on your network, and look at your DHCP pool to see what devices are currently assigned addresses.

    can anyone hack your computer through WiFi?

    Yes-ish. If you are running out of date installations or have weak user passwords on your PC then a remote compromise can happen.

    If you think someone has compromised your wifi, first thing is to change your wifi password and router password. 12 characters including uppercase lowercase letters, numbers and symbols.

    • Observer1199@lemmy.ml
      link
      fedilink
      arrow-up
      13
      ·
      1 year ago

      Just a slight correction - the old recommendation of using random chars, numbers, and symbols is no longer best practice as it causes more issues than it solves. New best practice is use long passphrase with minimum 16 characters but I’d recommend minimum 24 for future proofing. That sounds like a lot but “mary-had-a-little-lamb” is 22 chars and not hard to remember or type. Obviously don’t use exactly that password (since it’s mine & passwords should be unique 😉)

        • Observer1199@lemmy.ml
          link
          fedilink
          arrow-up
          4
          ·
          1 year ago

          Rule 41 of the internet - there’s always a relevant XKCD comic.

          I’m not sure that the maths in it is correct - I know there’s some criticism of that in particular example but I think it holds up as long as you make it long enough and don’t just use common short words or common phrases. Its also bad if there’s a pattern to your passphrases e.g. only using colours, or sports team mascots, or all words of the same length, etc

          And where possible use MFA (unless it’s SMS based, then I wouldn’t bother - I suspect when businesses offer that they just want to collect your phone number and don’t care about security).

          • slazer2au@lemmy.world
            link
            fedilink
            arrow-up
            4
            arrow-down
            1
            ·
            1 year ago

            It is weak to dictionary attacks far less then a random string is. Each method has advantages and disadvantages.

            • 𝕸𝖔𝖘𝖘@infosec.pub
              link
              fedilink
              English
              arrow-up
              2
              ·
              edit-2
              1 year ago

              Kind of, yes. If they use special characters and numbers, too, dictionary attacks would be far less useful. In the XKCD example above, something like this (Correct@Horse&BatteryStaple8) will be much harder with a dictionary attack. Definitely not impossible, though. Nothing is 100%.

              I used to install and use foreign keyboard languages, but found it nearly impossible to use in some instances (bank sites, older iPhones versions, and so on).