HELP: Final Question About Hackers Stealing Files Via Wireless Net

Discussion in 'Windows Vista Security' started by john ha, Mar 20, 2010.

  1. john ha

    john ha Guest

    Hello, my question is to verify if these statements are true,
    I wanted to email these guys personally but
    I understand it's better to share this with everyone.



    The questions concern if hackers can break into my Vista computer
    and access the hard drive's files,
    if my laptop is wirelessly connected to an unsecured router
    (meaning they connect to the unsecured router, and connect
    to my laptop that's wirelessly connected to the router).



    Also, I have not shared any folders
    (so was wondering if with cracking admin access they could get around it).



    The first is by Gene E. Bloch, who said:

    "Even wihtout a password, someone with physical access to your computer
    couldn't get to the Administrator (it's not called super-administrator)
    account unless one of these is true:

    1. The account is enabled (which it isn't by default), or

    2. The person can log on to another account on your computer, either by
    knowing the password or by that account having no password. In this case he
    could enable the Administrator account. But see my disclaimer below.

    Disclaimer: I think the operation in #2 requires an Administrator account."


    First thanks Gene! Can you guys verify, is this true, meaning
    both statements are right?




    Secondly, Gene pointed out that, "I learned something I didn't know before -
    but
    it was from Russ SBITS.

    It was the thing about Ctrl-Alt-Del to bring up the Administrator logon,
    and it kind of invalidated my own post (boo hoo!). Now I have to figure out
    if I can do that even though my own account logs on automatically. "

    This was Russ' statement:
    "When you see the Login Prompt
    Do a Ctrl + Alt + Del and enter "Administrator"
    Password blank
    Then after you login as adminstrator.
    do another Ctrl +alt + Del and change the password
    then enter the Control panel / Users
    and create Secure passwords for each user."




    So now my question is, Gene said it invalidated his statement,
    or is he referring to something else?

    From what I understand, Russ is saying that if the Administrator account
    is not enabled or setup, someone can remotely just ctrl+alt+del and enable
    it like that? I'm probably misunderstanding this, can someone verify what
    he's talking about?




    Finally, I'm just trying to put my mind at ease
    to understand if a neighbor hacker
    can break into my Vista computer
    and access the hard drive's files,
    if my laptop is wirelessly connected to an unsecured router
    (meaning they connect to the unsecured router, and connect
    to my laptop that's wirelessly connected to the router).

    I accidentally left the connection unsecured (it's been secured)
    for 2 hours, and wondering if they could have broken in and
    accessed/transferred/stolen
    files that were stored on the hard drive.

    Is it possible?



    Thanks everybody for all your help!
    This will be my last post about this,
    but your responses will help me feel better!
     
    john ha, Mar 20, 2010
    #1
    1. Advertisements


  2. Yes, it is possible. It's even easy if the purported hacker/cracker
    knows (or can detect) your computer's name. All WinNT-descended
    operating systems, of which Vista is one, has a built-in, albeit hidden,
    administrative "Share" of which any serious hacker/cracker would be
    aware. This is why, as I've already mentioned, the standard security
    practice is to rename the built-in Administrator account, set a strong
    password on it.

    Now, is it likely? Probably not. First of all, one of your neighbors
    would have to want to hack/crack others' computers, acquire the
    knowledge, skills, and tools to do so, and then want to get at /your/
    files in particular. And then they'd have to do so during that two hour
    window when your wireless router was unsecured.


    --

    Bruce Chambers

    Help us help you:
    http://www.catb.org/~esr/faqs/smart-questions.html

    http://support.microsoft.com/default.aspx/kb/555375

    They that can give up essential liberty to obtain a little temporary
    safety deserve neither liberty nor safety. ~Benjamin Franklin

    Many people would rather die than think; in fact, most do. ~Bertrand Russell

    The philosopher has never killed any priests, whereas the priest has
    killed a great many philosophers.
    ~ Denis Diderot
     
    Bruce Chambers, Mar 20, 2010
    #2
    1. Advertisements

  3. FromTheRafters, Mar 20, 2010
    #3
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.