I have a friend who has been hacked by someone they know, and this hacker has a Flipper Zero, which they've used to break into my friend's WiFi multiple times. They managed to install malware on my friend's computer and phone that persists through factory resets, actively trying to steal personal information. I'm meeting up with my friend soon to help format their drive using a Windows ISO from a USB and reinstall the OS, but I'm looking for advice on further protecting their WiFi against these attacks and best practices for completely wiping the malware. It's also worth mentioning that the hacker still accessed their WiFi even after my friend swapped their modem.
6 Answers
Documenting everything and potentially notifying authorities sounds crucial, considering the level of harassment. This can help prevent future incidents and establish a record of the situation.
Consider looking into WPA3 security for their router and disabling the 2.4GHz band if it isn’t needed, making it harder for the hacker to connect. Using advanced security methods, like a Radius server with a Raspberry Pi, can create a much tighter security net, but it does require some technical setup.
First off, definitely recommend updating your friend's router. They should change the SSID and password, enable MAC address filtering, and see if that helps. Reinstalling Windows via USB is a good move, and after that, changing all their passwords and turning on 2FA would provide added security. Just remember, the hacker seems knowledgeable, so it’s essential to really lock things down!
Using Malwarebytes is a smart choice, especially since there’s a free option. They should connect directly with an ethernet cable and turn off WiFi to avoid connecting to open networks inadvertently. After a secure erase, make sure they don’t restore from any backups or restore points because that could just reintroduce the malware. Have them document everything and consider filing a police report about the hacking incident.
For real! A clean slate is best. Your plan to use Hiren's Boot CD sounds great; just ensure they get their important files backed up first!
I would suggest your friend take this seriously—it might not just be paranoia. A Flipper Zero isn’t the stuff of magic, but it does mean extra caution is needed. They should check router logs, change the admin password, and turn off WPS to limit access. Also, monitoring their network activity could provide some insight into ongoing issues.
Has your friend looked into whether they’re using the same SSID and password post-modem swap? Even with a new modem, they should definitely ensure nothing’s the same as before to close off any potential backdoor access.
I’m not sure about the SSID, but I’d hope they’d have changed the password after everything that's happened! It’s definitely puzzling how the hacker could access it again otherwise.
Yeah, I wouldn't say malware installation is impossible, as it seems the hacker did it before. Good luck with the process, and make sure your friend understands the risks.