LITIGATION SUPPORT TIP OF THE NIGHT

The Tip of the Night for February 9, 2018, discussed how you can easily look up the default password for a router. After receiving a new router, it is imperative that the default password be changed. In order to do this, in a web browser enter the IP address associated with the router, and access your account using the default user name and password. In order to find this IP address, in command prompt enter: ipconfig

At the end of the data generated by this command will be an IP address listed as the default gateway. This is the address of the site where your router's password can be reset.

Often the default password for a router will be printed on the back of the router. Obviously leaving your password set to this is not wise. If someone gains control of your router, they can execute a pharming attack. A pharming attack will re-direct your internet traffic to a different DNS server (domain name server) that will translate web address names into the IP addresses of sites set up for malicious purposes.

It is possible to have a computer direct traffic directly to a DNS, rather than through a router, and thus avoid the problems which come from having a compromised router. Note that the router password is different from a wifi password. A home network, or local work network should have one of each.

The name of your wifi network is your SSID - the Service Set Identifier. The service set refers to all of the devices (computers, printers, etc.) that utilize your home network. Be sure that your SSID name doesn't refer to the manufacturer of the router; the name of your internet service provider; or your family name or home address. This information can help a hacker gain access to your network. Pick a name that a stranger will not associate with you or your devices. If your current SSID is something like 'NETGEAR-99TF' or 'xfinitywifi02' be sure to change it.

While it is possible to hide the SSID for a wifi network, it may be counterproductive to do so. A good wifi scanner will still be able to detect the network. Performance on the network may suffer because multiple attempts will be needed to connect.

Naturally, you should always make sure that your wifi network uses encryption and is password protected.

As discussed in the Tip of the Night for December 10, 2010, Facebook Messenger can be set to use end-to-end encryption. Follow these steps to enable E2EE in Messenger, which is only available on iPhones and Android devices.

1. In Facebook Messenger after clicking on the pen and pad icon to begin a new message, tap 'Secret' in the upper right corner.

2. The new message will include a caption indicating that end-to-end encryption is enabled.

3. At the left you'll be able to click on a clock icon which will set any messages you send to disappear at a set time interval.

E2EE will prevent anyone except for the recipient from accessing your message. The recipient will not need to take any steps to de-crypt the message, but the message will include a caption indicating that it is encrypted. To be clear, the benefit of E2EE is that the service provider, Facebook itself, is prevented from reading the messages. But Facebook Messenger is not E2EE by default. The Facebook owned WhatsApp text messaging app does use end-to-end encryption by default.