When an internet connection suddenly becomes unstable and speed drops to critical levels, it often baffles router owners. You pay your provider for a high-bandwidth plan, but pages take hours to load, and video calls are pixelated. In most cases, the culprit isn't the provider's equipment or the weather, but rather simple traffic theft.
Neighbors who find your network without a password, or acquaintances who know the access key, can hog your bandwidth, consuming gigabytes of content. This not only reduces speed but also poses security risks to your personal data. Illegal access access to the network gives attackers the opportunity to intercept traffic or use your device for illegal activities.
Understanding how exactly third-party connections occur and knowing how to protect yourself is the first step to restoring network stability. Modern routers, whether TP-Link, Asus or Keenetic, have powerful monitoring tools. You don't need to be a hacker to identify and block uninvited guests.
Symptoms and signs of unauthorized access
The first warning sign is often a blinking Wi-Fi indicator light on the router. If you're not downloading anything or watching a video, but the indicator is actively blinking, it means data is being transferred. This is a classic sign that someone is using your bandwidth.
The second sign is an unexplained drop in speed. Even if your plan allows for 100 Mbps, the actual speed may only be 10-20 Mbps. This happens because the bandwidth is divided among all connected devices. Channel loading third-party devices create packet queues and increase ping.
It's also worth paying attention to the list of available networks within range. If you see a network with a name similar to yours (for example, "My_WiFi" instead of "My_Wifi"), this could be a sign of an evil twin attack, although more often than not, your neighbors are simply connecting to your real router. Checking the client list is the only way to be sure.
In some cases, the operating system or antivirus software may issue warnings about network IP address conflicts. This occurs when another device attempts to use an address already assigned to your device. IP conflict may result in constant connection breaks.
How to check the list of connected devices
The most reliable way to identify a thief is to log into the router's administrative panel. To do this, enter the gateway IP address (usually 192.168.0.1 or 192.168.1.1) in the browser's address bar. After entering the username and password (usually admin/admin, unless you've changed them), the management interface will open.
You will need a section that may have different names depending on the model. TP-Link This is often a tab DHCP -> DHCP Client List or Wireless -> Wireless StatisticsIn routers Asus you need to look at the network map in the section Network map, and in Zyxel Keenetic — in the menu Client list.
In the list that opens, you'll see all devices currently connected to the network. Compare the MAC addresses and device names with those belonging to you and your family. Unknown names like "Android-xyz" or "Unknown Device" should raise red flags. MAC address - This is a unique identifier of a network interface that is difficult for a random user to forge.
- 📱 Check the smartphones and tablets of all family members—sometimes people forget about their children's connected gadgets or smartwatches.
- 💻 Don't forget about smart technology: TVs, set-top boxes, robotic vacuum cleaners, and security cameras are also included in the list.
- 🔌 Turn off Wi-Fi on all your devices and see if any extra connections remain active in the router's control panel.
Table: Comparison of Wi-Fi network security methods
There are several levels of protection, and their effectiveness varies greatly. Simply hiding your network isn't a reliable barrier, while encryption and address filtering provide real results. Below is a comparison of the main methods.
| Method of protection | Difficulty of setup | Efficiency | Impact on convenience |
|---|---|---|---|
| Change password (WPA2/WPA3) | Low | High | You need to reconnect all devices |
| MAC filtering | Average | Very high | It's labor-intensive to add new gadgets |
| Hiding the SSID | Low | Low (foolproof) | It's inconvenient to connect guests |
| Guest network | Low | Medium (insulation) | Separate password for guests |
As the table shows, a combination of methods produces the best results. However, if you need to quickly resolve the issue right now, changing your password is the most effective step. More advanced methods, such as MAC filtering, take time to set up, but provide long-term protection.
Emergency measures: change your password and encryption type
If you detect an intruder, the first thing you need to do is change your wireless network password. Go to your wireless settings (Wireless Settings) and find the field Wireless Password or Pre-Shared KeyCome up with a complex combination of letters and numbers.
It is critical to check the encryption type. Make sure the mode is selected. WPA2-PSK or, if the router supports it, WPA3WEP or "Open System" modes (without a password) can be cracked in seconds using specialized software, which many advanced users have. WPA2 is the current safety standard.
⚠️ Attention: After changing the password, all your devices will be disconnected from the network. You'll have to re-enter the new access key on each smartphone, laptop, and TV. Prepare the new password in advance to avoid losing access to your router settings.
Avoid using simple passwords like "12345678" or a phone number. Hackers use dictionaries of such combinations to automatically guess passwords. A random set of characters that is difficult to remember but easy to copy works best.
Setting up MAC address filtering
A more reliable, albeit more labor-intensive, method is to create a whitelist of approved devices. In this mode, the router will only allow devices whose MAC addresses are included in the database to connect to the network. All others, even with the password, will be blocked.
To implement this function, find the section Wireless MAC Filtering or MAC filteringEnable filtering and select "Allow" mode. Then add the MAC addresses of all your devices to the list. This is usually done by clicking the "Add New" button.
The main drawback of this method is the difficulty of connecting new devices. If a friend comes over with a laptop, you'll have to manually enter their MAC address into the router settings, otherwise their internet won't work. Therefore, it's best to use this method in conjunction with a strong password.
☑️ Setting up MAC filtering
Hiding the network name (SSID) as an additional measure
Many users mistakenly believe that hiding the network name (SSID) will prevent anyone from finding it. Indeed, your network won't appear in the list of available connections on your neighbor's phone. However, to connect, you'll have to manually enter the network name and password.
Technically, a hidden SSID isn't reliable protection. Specialized software can easily detect networks with hidden names based on the service packets the router still sends. Moreover, some devices (especially older printers or IoT gadgets) may not work properly with hidden networks.
Use this method only as a complement to a strong password. Don't rely on "security through obscurity." Hiding the SSID It's more likely to protect you from lazy neighbors who are simply scrolling through the list of networks than from a real hack.
Why is hiding SSID not secure?
The router constantly broadcasts beacon frames containing network information. Even if the name is hidden (Null SSID), traffic analyzers can see the activity and intercept the connection of a legitimate client to determine the network name.
Using the guest network
Modern routers allow you to create guest networks. This is a separate access point with its own username and password. The main advantage is isolation. Devices on the guest network don't have access to your local network, which may contain NAS storage, printers, or PC files.
If you frequently have guests or rent out part of your property, set up separate access for them. You can set speed limits or password expiration times. This will protect your primary devices from potential threats, even if a guest's smartphone is infected with a virus.
Find the section in your router settings Guest NetworkActivate it, set a name (e.g., "Home_Guest") and a simple password. Don't forget to restrict access to local resources, allowing only internet access.
Frequently Asked Questions (FAQ)
Can my neighbor see what websites I visit if he is connected to my Wi-Fi?
Yes, if they use specialized packet sniffers (such as Wireshark) and are on the same network. They can see unencrypted traffic (HTTP). However, if you use HTTPS (which is now the standard for most websites), they will only see the domain name, not the page content or passwords. However, the risk of data theft remains.
For complete security, use a VPN, which encrypts all traffic between your device and the server.
Will the router's IP address change after changing the password?
No, your external IP address (the one visible to the internet) depends on your ISP and doesn't change when you change your Wi-Fi settings. Your router's internal IP address (gateway, for example, 192.168.1.1) will also remain the same unless you change your LAN settings. Only the wireless network access key changes.
What should I do if I can't access my router settings?
If you can't access the control panel (forgot your administrator password), you'll have to perform a factory reset. There's a reset button on the back of the router. Reset (often recessed into the case). Press it with a paperclip for 10-15 seconds while the router is powered on. The router will reboot with the factory default settings (the login/password is usually on a sticker on the bottom), but you'll have to re-enter all your internet settings.
Will a Wi-Fi finder help find a thief?
Programs like Wi-Fi Analyzer or Fing (for Android/iOS) allow you to view a list of connected devices and their MAC addresses directly from your phone. This is a convenient way to quickly diagnose problems without logging into the router's web interface. However, you can't use these tools to block a device or change the password—access to the router's admin panel is still required.
Is it legal to hack your neighbor's password back?
No, it's illegal. In most countries (including Russia, under Article 272 of the Russian Criminal Code, "Unauthorized access to computer information"), unauthorized access to someone else's network is a crime. Even if your neighbors are stealing from you, taking legal action by hacking their network could lead to legal problems for you. The best solution is to technically secure your network.