How to protect home computers from hackers

Most of us don't give much thought to network security in the workplace.

We're typically protected by a vigilant IT staff that's responsible for fending off all threats to security.

Unfortunately, when it comes to homes with broadband Internet access (such as cable or DSL), taking a casual approach to security can result in big problems.

Studies by firms like Symantec and McAfee show that only 10 percent of home wireless networks are adequately secured.

Why is security important?

The threats to home networks range from casual "war driving" (searching neighborhoods for an open network as a source of free Internet access) to full-scale infiltration and control.

The biggest concern facing home users with unsecured networks is identity theft.

Even if you don't store sensitive information on your computer, there's the issue of liability: If someone taps into your Internet connection and downloads illegal or copy-protected material, you can be held legally liable based on the records kept by your Internet service provider.

The weakest link in a home network is the wireless connection.

Most homes equipped with broadband Internet access include a router to share the Internet connection among several computers.

Some cable or DSL modems include built-in routers; other home networks use stand-alone router/firewall units that offer improved functionality.

In either case, the wireless feature is often turned on by default, so you may be broadcasting a wireless signal even if none of your computers uses a wireless connection.

Protecting wireless traffic

The first step to securing your wireless network is to change the default user name, password, and identifier (called the SSID) for your router. As evidenced by mapping services that plot the location of open wireless networks (such as www.wigle.net), many home users neglect to take this simple step.

The default names and passwords for all major router brands are well known, giving a would-be hacker an easy way to take complete control of your router.

Next, you should turn on encryption. This feature scrambles data sent across the wireless network, so it cannot easily be read by inquisitive eyes.

Computers with older wireless cards may only support a low level of encryption, called WEP. This type of encryption can be broken by a determined hacker quite easily, so it's worth considering an upgrade to such systems.

A much better option is WPA encryption, available on most wireless computers sold in the past couple of years. WPA comes in several varieties; you should choose the method that is compatible with all computers on your network.

These basic steps will go a long way to making your home network more secure.

Additional security measures

Other security measures include configuring the router's firewall to block access to all computers except your own, monitoring both incoming and outgoing traffic, and simply turning the router off when it's not in use for extended periods.

In addition, individual computers on your network should be protected with the appropriate software against viruses, spyware, and other forms of attack.

The initial effort to lock down your network will reward you with peace of mind and a smoother computing experience down the road.