Researcher showed how to easily crack Wi-Fi passwords

Recently a Tel-Aviv-based security researcher shared on the internet the results of his experiment. Ido Hoorvitch wanted to show how vulnerable most networks are. The results amazed everyone. For the experiment, he used a $50 Wi-Fi signal extender and a laptop. Other tools included specialized hardware drivers that enable monitor mode with the signal extender and packet capture tools. The entire trick can easily fit into a backpack.

Hoorvitch Wi-Fi experiment on Tel-Aviv streets

Over the course of the day he spent on Tel-Aviv streets Hoorvitch collected 5,000 Wi-Fi passwords. The first step of an experiment he managed. The next one was to decode the hashed Wi-Fi passwords. The researcher also added that in Tel-Aviv most people have a tendency to put their own phone numbers as a password. Even with the first pass using the Hashcat tool he cracked 2,200 of the passcodes. At the end of the experiment, Hoorvitch managed to obtain passcodes for a total of 3,559 of the 5,000 sniffed hashes.

But the researcher noted that the attack technique applies only to the networks that have Wi-Fi roaming enabled. In the end, he recommends users to change the default login settings. Also, it is important to create long, complex passwords. Such passwords are ones that have more than 10 characters with both lower and uppercase as well symbols and digits. Other safety measurements include disabling the weaker Wi-Fi Application Protocol (WAP) and WAP1 specifications, turning off Wi-Fi Protected Setup and updating router firmware.

“As I estimated beforehand, the process of sniffing Wi-Fi and the subsequent cracking procedures was a very accessible undertaking in terms of equipment, costs and execution”.The bottom line is that in a couple of hours and with approximately $50, your neighbor or a malicious actor can compromise your privacy and much more if you don’t have a strong password,” – Ido Hoorvitch.

Ido Hoorvitch with his experimental tool kit


In total researcher cracked more than 3,500 WiFi networks in. And it constitutes 70% of the sample. A compromised WiFi network can present a risk to the same degree as individuals, small business owners, or enterprises. At the most basic level, an attacker can gain access to your important accounts, such as your email account, bank account, and compromise other sensitive credentials. This further can endanger your IoT devices like smart TVs, security systems, smart home equipment, etc.

Hazards for companies

Concerning the small businesses, here hackers can infiltrate a network and then proceed to the high-value applications or data, such as a cashier or billing system. In the case of an enterprise, it’s imaginable for an attacker to get initial access to a remote user’s WiFi. After that, they can jump to the user’s computer and wait for a VPN connection or for the user to be at the office and go from there.

About Andy

Cybersecurity journalist from Montreal, Canada. Studied communication sciences at Universite de Montreal. I was not sure if a journalist job is what I want to do in my life, but in conjunction with technical sciences, it is exactly what I like to do. My job is to catch the most current trends in the cybersecurity world and help people to deal with malware they have on their PCs.

Check Also

Attackers usually don`t brut-force long passwords

Attackers usually don`t brute-force long passwords

Microsoft’s network of honeypot servers data showed that very few attacks targeted long and complex …

Another Windows zero day allows for admin privileges

Another Windows zero day allows for admin privileges

Researcher Abdelhamid Naceri who often reports on Windows bugs this time dropped a working proof-of-concept …

Leave a Reply