Secure Your Wifi: Pt2 SSID and Password

Secure Your Wifi: pt1 SSID and Password

 

Essential Steps to Secure Your Home Wi-Fi Network

In today’s digital age, securing your home Wi-Fi network is more important than ever. Cyber threats are constantly evolving, and an unsecured Wi-Fi network can expose your personal data, devices, and even your identity to hackers. Here, we’ll cover two foundational steps to bolster your Wi-Fi security: changing the default Wi-Fi name (SSID) and setting a strong, unique password.

 

As you will hear me mention many times in this series, unless you are being specifically targeted the majority of hackers are opprotunistic.  This means that they will be looking for an easy target that will be simple to comprimise, a network where they can operate undetected for a long period of time, and leave you wondering how your sensitive data has been stolen.

 


Change the Default Wi-Fi Name (SSID)

When setting up a new Wi-Fi network, the default network name (known as the SSID or Service Set Identifier) is often overlooked. However, changing this name is a simple yet effective way to increase your network's security and deter potential hackers.  

Why Change the Default SSID?

Most routers come with factory-set SSIDs like “Linksys,” “Netgear,” or “TP-Link,” followed by a string of numbers. While this might seem harmless, default SSIDs can give hackers critical information about your router’s brand and model, making it easier for them to find vulnerabilities and launch targeted attacks against known vulnerabilites to the particular router. Changing the SSID adds an extra layer of security by making your network less identifiable and more difficult to breach.  It also signals 2 things to a potential threat, or bad actor, that the default name and password has been changed and there is a possibility that the network is at a minimum being periodically monitored.

How to Change Your Wi-Fi Name

Changing your SSID is straightforward and can be done in just a few steps:

  1. Log Into Your Router’s Admin Panel: Open a web browser and type your router’s IP address into the URL bar. For many routers, this address is “192.168.1.1” or “192.168.0.1.” Refer to your router’s manual if this doesn’t work.

  2. Enter Your Router’s Username and Password: If you haven’t changed these from the default settings, now is also an excellent time to do so. Default login credentials are often “admin” for both the username and password, which is highly insecure. Change these to something unique to add another layer of protection.

  3. Navigate to the Wireless Settings Section: Once logged in, locate the wireless settings section, where you can rename your SSID.

  4. Rename the SSID: Choose a unique name for your network. While it might be tempting to use something personal, avoid including your name, address, or any other identifiable information in your SSID. For instance, rather than using “John’s Wi-Fi” or "Bishop Family Wifi", choose something more abstract like “BlueSkyNetwork” or “SunsetWave01.”  You can even have fun with it and call it "Death Star Wifi" or "Caste Hogwarts Wifi", just don't update the password to be themed with your wifi name.

  5. Save Your Changes: After you’ve renamed your SSID, ensure you save the settings to apply the changes.  Some routers will require a soft reboot, and any devices that are currently on the network will need to be rejoined after saving.

Tips for Choosing a Secure SSID
  • Avoid Using Personal Information: Using names, addresses, or birth years can make your network more vulnerable to social engineering attacks.
  • Stay Creative but Neutral: A unique, non-personal SSID like “GalaxyWaves” is both memorable and neutral.
  • Consider Obfuscation: Some users opt to make their SSID sound unappealing, like “Error_404_Not_Found,” which might deter casual users from even attempting to connect.
Why It Matters

Changing your SSID is a simple yet powerful first step to securing your network. A unique SSID does not itself enhance encryption or security, but it does make your network less of a target for attackers scanning for easy-to-identify, default-named networks. In essence, it’s a way to prevent your network from standing out and becoming an easy mark for cybercriminals.

 

Broadcast ID

Some routers will give the option to not broadcast, or advertise, the SSID.  This does not enhance security and is a relic from the early days of WiFi where it did offer a small level of security.  Regardless of on or off most devices today will still see it the network and signal strength.  It worked by turning a bit "on" that told the devices not to list that network as an available network and in today's day and age it is best to leave it on.


 

Set a Strong, Unique Wi-Fi Password

If your Wi-Fi password is weak, it’s as if you’re inviting cyber threats into your network. A strong, complex password is the backbone of a secure network, as it can prevent unauthorized access, keep your data safe, and protect against a range of cyber threats.

Why You Need a Strong Wi-Fi Password

A weak Wi-Fi password, like “password123” or “homewifi,” is easy to guess and susceptible to brute-force attacks. Hackers have access to databases of common passwords, and simple patterns are easily exploited. Setting a strong, unique password significantly reduces the risk of intrusion and makes your network a more challenging target.  One of the favorite techniques deployed is called a "Brute Force" attack.  It does exactly what it sounds like where the bad actors will run through a set of known default passwords, comprimised passwords bought off the dark web, and just randomly guessing.  All of this is usually done with a program.

How to Create a Strong Wi-Fi Password
  1. Use a Password of at Least 12-16 Characters: The longer the password, the harder it is to crack. Aim for at least 12 characters, though 16 or more is even better.

  2. Incorporate a Mix of Letters, Numbers, and Symbols: A combination of uppercase and lowercase letters, numbers, and special characters (like “!@#$”) enhances security by increasing password complexity.  One special character that I recommend is the "#", because of the complexity it can add a password cracking program since in many programming languages "#" is what is called a comment.  In those languages it means anything after that symbol is not going to be read or executed by the program.

  3. Avoid Common Words and Phrases: Don’t use obvious words, phrases, or patterns, such as “123456,” “qwerty,” or easily guessable details like your pet’s name, birthdays, or favorite sports team.

  4. Consider a Passphrase: A passphrase is a series of random words strung together, like “#StarryRiverShine@89#”. This approach combines security with memorability, as it’s often easier to recall a sentence-like phrase than a jumbled assortment of characters and has been proven to be more secure than random letters and numbers.

  5. Use a Password Manager: If you have trouble creating or remembering strong passwords, consider using a password manager. These tools can generate complex passwords and store them securely, so you only need to remember one master password.

Tips for Keeping Your Wi-Fi Password Secure
  • Avoid Sharing: Be mindful of who you share your Wi-Fi password with, and avoid displaying it in common areas or storing it in unsecured places.
  • Change It Regularly: It’s good practice to update your Wi-Fi password periodically, especially if you’ve shared it with others outside of your household.
  • Enable Guest Networks for Visitors: Many routers allow you to set up a guest network with its own password. This way, you can give friends and family access without compromising your main network’s security.
Why It Matters

A strong password acts as the first line of defense for your network, preventing unwanted access from hackers and cybercriminals. With an adequately complex password, it becomes incredibly difficult for attackers to guess or brute-force their way into your system, helping you keep your personal information, connected devices, and data safe.


Final Thoughts

Securing your home Wi-Fi network is essential to protect against modern cyber threats. By changing the default SSID to something unique and setting a strong, complex password, you’re taking the first two critical steps to safeguard your digital environment. These changes, though small, can make a significant difference in keeping potential intruders at bay and ensuring that your network remains a safe space for you and your family.