well this is scary...for the first time, my cell modem automatically connected to a rouge source and encrypted connections all started to break.
-
well this is scary...for the first time, my cell modem automatically connected to a rouge source and encrypted connections all started to break. Likely state agents. Disabling automatic network selection and roaming on the modem may help prevent this from happening again...for now. Would be interested to know how common this is π§
-
R relay@relay.infosec.exchange shared this topic
-
well this is scary...for the first time, my cell modem automatically connected to a rouge source and encrypted connections all started to break. Likely state agents. Disabling automatic network selection and roaming on the modem may help prevent this from happening again...for now. Would be interested to know how common this is π§
@dianea i just set up a "rayhunter" device. -
well this is scary...for the first time, my cell modem automatically connected to a rouge source and encrypted connections all started to break. Likely state agents. Disabling automatic network selection and roaming on the modem may help prevent this from happening again...for now. Would be interested to know how common this is π§
Look up and see if you can spot a drone flying overhead. It mimics a mobile relay. Disconnecting the VPN indicates an attempt to persuade the VPN to communicate unencrypted by not offering a key exchange. Normally, VPNs can handle relay changes (for example, if you are in a moving car). The requirement is that the VPN can re-authenticate and exchange keys. Make sure your VPN goes down when encryption is not possible.
-
well this is scary...for the first time, my cell modem automatically connected to a rouge source and encrypted connections all started to break. Likely state agents. Disabling automatic network selection and roaming on the modem may help prevent this from happening again...for now. Would be interested to know how common this is π§
@dianea Were you getting RSTs on encrypted connections, or what happened?
-
@dianea Were you getting RSTs on encrypted connections, or what happened?
all existing encryption connections broke and new ones were very slow. I noticed the router had a roaming connection, so I quickly disabled that and rebooted. Odd, because I am within line of sight to two 5G towers in multiple cities from the top of this mountain.
-
Look up and see if you can spot a drone flying overhead. It mimics a mobile relay. Disconnecting the VPN indicates an attempt to persuade the VPN to communicate unencrypted by not offering a key exchange. Normally, VPNs can handle relay changes (for example, if you are in a moving car). The requirement is that the VPN can re-authenticate and exchange keys. Make sure your VPN goes down when encryption is not possible.
I noticed within a few minutes, there was a lot of connection re-attempts, but the VPN would not allow any connections until I disabled roaming and restarted the router, even though I could still use the phishy "network"
-
I noticed within a few minutes, there was a lot of connection re-attempts, but the VPN would not allow any connections until I disabled roaming and restarted the router, even though I could still use the phishy "network"
As long as your virtual network was down it's fine. Using the cell network unprotected gave them some snooping insights of you testing it I guess. Make sure the modem and router is prima bella up to date, they could go for 0-days hacks in your modem or router.
-
As long as your virtual network was down it's fine. Using the cell network unprotected gave them some snooping insights of you testing it I guess. Make sure the modem and router is prima bella up to date, they could go for 0-days hacks in your modem or router.
I should move everything behind the pfsense router, including my weather station. I'm afraid that little embedded device likely has a bunch of holes a train could plow through
-
I should move everything behind the pfsense router, including my weather station. I'm afraid that little embedded device likely has a bunch of holes a train could plow through
Yep, put it *ALL* behind the firwall.
-
Yep, put it *ALL* behind the firwall.
All my network traffic is now safely on the firewall and VPN! Disabled the weather station wifi and now LoRa only. I may soon go hardline for everything only.
