Jun 23, 2017  Over 800,000 Virgin Media customers are being advised to change their wifi passwords after an investigation found that hackers could potentially access.

If you haven’t already done this, now would be a good time.

We review products independently, but we may earn affiliate commissions from buying links on this page. Terms of use.

Hats off to UK consumer rights watchdog Which? for flagging up a potential security risk for Virgin Media customers with older versions of the Super Hub routers. Sirius zip code finder.

To be clear, no ‘hack’ has taken place, so any publications writing it up as such either don’t understand or are being alarmist for easy clicks.

However, Which?’s research has shown that Virgin’s own-brand SuperHub 1 (pictured) 2 and 2ac routers, which come with eight-character long WiFi passwords by default can be easily compromised.

The method which Which? (?) used to break into the target device - a Super Hub 2 - sound very much like what’s called a brute force attack; this is where you get a program to throw a every possible sequence of letter and number combinations at a system until it comes up with the correct one.

Virgin Media databases haven’t been hacked - but change your password anyway

If anything, the test is a stark reminder to customers that when they get new hardware from their ISP - whether that’s Virgin Media or anyone - they should change the default passwords as soon as they’re able. You should also make them as long as possible.

As Which?’s own post says:

“In our hacking investigation, we targeted a real home that used the Virgin Media Super Hub 2 router for its cable broadband. The user had remained on the relatively weak default password – only eight characters long, using just lowercase letters from an A-Z alphabet, with two letters removed…

“The Super Hub 3.0 uses much stronger passwords than its predecessor. These are, by default, 12 characters long, with a mix of cases and numbers. This has significantly improved security, as confirmed by our own tests. While it took mere days for us to crack the Super Hub 2 password, using the same approach it would take 262 million years to breach the Hub 3.”

Correct Horse Battery Staple

If you’ve been on the Internet for more than ten picoseconds, there’s a good chance you’ll have read xkcd No. 936 - aka Correct Horse Battery Staple.

Stanton wrote:Just to confirm what I posted above is from the 2010 Canadian manual for the Genesis VP Directional. Genesis 1 radar manual. However, perhaps the manual is out of date (it has a date of 2001 - 2005 on it) and later versions of the manual have taken that section out.So if I cannot find a more recent manual, I guess I will just ask the Constable if the tuning fork test is in the manual and if he says no then I will give up on that line of defense.Thanks. That is the entire testing procedure for the handheld unit.

This webcomic serves as a decent introduction to password entropy, or, in other words, how to make your password hard-to-impossible for script kiddies to guess, while at the same time suggesting a fun and easy way to make that tricky-to-crack password easy-to-remember.

Which? notes that Virgin’s Super Hub 3.0s ship with longer passwords, making them harder to guess by default.

Even if you’ve got a Super Hub 3.0, you should still change both the admin password (which gives you access to the router itself) and the SSID password (aka your WiFi password).

If you’re a Virgin Media customer and you’ve not done this, the admin password and SSID can be found printed on the back, side or base of the device itself, depending on which model Super Hub you have.

In most cases you’ll need to type http://192.168.0.1 into your browser and enter the admin password when prompted.

If WiFi’s turned off or you can’t connect to the Internet, make sure your desktop or laptop’s plugged in to a spare Ethernet port on your router.

From here you’ll be able to change both the SSID/WiFi password and admin password.

How can I generate my own password?

If you want to create a super-secure password, you might want to rely on a password generator like this one for inspiration. Whatever you change everything to, make it easy to remember or if you can’t, write it down and keep it somewhere safe and out of view.

Also, don’t do what these twerps suggest. Sticking your SSID and password on a window? Yeah, good one.

“super hub” by mjtmall (tiggy) is licensed under CC BY 2.0.