Detecting a foreign device on your home network isn't just an annoyance that can slow down your internet. It's a direct threat to the security of your personal data, banking apps, and browsing history. If you notice your router is overloaded and the indicator light is flashing excessively when you're not downloading anything, this is a sure sign. Wi-Fi password could have been compromised or picked up.
Modern smartphones allow you to manage your network just as well as computers, giving you tools for quick response. You don't need a laptop and cable to kick a "neighbor" off the network. All you need is a phone with a browser installed or a special app from your router manufacturer.
In this article, we'll walk you through a step-by-step process: from analyzing the list of connected clients to completely blocking other people's MAC addresses and changing security keys. It's important to act quickly and decisively to prevent an attacker from gaining access to your system.
The first signs of a hack and how to spot them
Before panicking, it's worth making sure the problem is truly a third-party connection. Users often confuse background system updates or cloud photo syncing with third-party traffic. However, there are clear indicators of compromise, which cannot be ignored.
Pay attention to the indicators on your router. If the Wi-Fi light (usually indicated by wavy lines) is flashing wildly when all your devices are asleep or turned off, this is a warning sign. Also, be wary if your internet speed drops to a crawl immediately after you stop downloading large files.
The most reliable way is to check your router's admin panel. It displays the exact number of active connections. If you have a phone, laptop, and smart speaker connected, and the system shows five or six devices, that means a third one is already "sitting" on your network.
⚠️ Attention: Some smart devices (light bulbs, sockets) may periodically disconnect and reconnect, creating the appearance of activity. Always check the MAC addresses of suspicious devices against the labels on your equipment.
How to view a list of connected devices through a browser
First, you need to access your router settings. This can be done from any phone connected to Wi-Fi (even if other phones are connected, as long as you're online). Open any browser (Chrome, Safari) and enter your gateway's IP address in the address bar. Most often, this is 192.168.0.1 or 192.168.1.1.
The system will ask for your login and password. If you haven't changed them, try the default combinations (admin/admin) found on the sticker under the router. If the default combinations don't work and you don't remember them, you'll have to press the reset button. Reset on the body.
After authorization, look for a section that may have different names depending on the model: DHCP Client List, Attached Devices, Wireless Status or "Client List." Here you'll see a table with everyone currently connected to your access point.
| Router model | Menu section | Subsection | Display type |
|---|---|---|---|
| TP-Link | Wireless | Wireless Statistics | List of MAC addresses |
| ASUS | Network map | Clients | Device icons |
| Keenetic | My Networks and Wi-Fi | Client list | Detailed list with names |
| D-Link | Status | DHCP Clients | IP and MAC table |
Review the list carefully. Devices are often listed with names such as iPhone-User or Desktop-PCIf you see an unfamiliar name or just a set of characters (for example, android-5f3a2b), which you cannot identify, is your candidate for blocking.
Using mobile apps to monitor your network
If logging in via a browser seems complicated or your router's interface isn't mobile-friendly, you can use specialized apps. They scan the network and display all active devices in a convenient format.
Popular utilities like Fing, Network Scanner or official applications from router manufacturers (for example, TPLink Tether, Keenetic) allow you to instantly see who's connected. They often identify the device's manufacturer by its MAC address, making it easier to find the "intruder."
The advantage of such apps is that they can send notifications about new connections in real time. You'll immediately know if someone is trying to connect to your Wi-Fi, even when you're away from home.
However, remember: such apps can only give you a general idea. To block directly (via a MAC filter), you'll most likely still have to follow the link the app provides to your router's web interface, unless the utility itself is able to manage your specific model.
Methods for blocking uninvited guests
Once you've identified the intruder, you need to shut them down immediately. There are two main ways to do this: soft (using a client list) and hard (using MAC address filtering).
The first method is to simply click the "Block" or "Disable" button next to the device in the router interface (if supported). The router will terminate the connection, and the device will lose access. However, if the Wi-Fi password hasn't been changed, a hacker or neighbor may attempt to reconnect automatically.
The second, more reliable way is to use MAC filterEach network adapter has a unique identifier—a MAC address. You can configure your router to allow only trusted addresses (White List) or, conversely, block specific ones (Black List).
- 📱 Blacklist: You add the intruder's MAC address to the blacklist. The router will ignore any requests from this device.
- ✅ Whitelist: Enhanced Security Mode. The router allows connections ONLY to devices whose MAC addresses are listed. All others, even with the password, will be unable to connect.
- 🔄 Connection broken: In some models (for example, Keenetic), you can simply click the "Block" button in the current list, and the router will automatically add the address to the filter.
☑️ Checklist for blocking an intruder
After applying filtering, the device will disappear from the list of connected devices, and its authorization attempts will be recorded in the router's system log as "blocked" or "denied."
Change your password and strengthen your Wi-Fi security
MAC address blocking is good, but you still need to change your password. If someone has connected, it means the current security key is either too simple or has been stolen (for example, through a QR code on a friend's phone). Go to Wireless Security or Wireless settings.
Create a complex password. It should be at least 12 characters long and include uppercase and lowercase letters, numbers, and special characters. Avoid birthdays, phone numbers, and simple sequences like 12345678.
It is critical to choose the right encryption type. From the list of security methods, select WPA2-PSK (AES) or, if the router is modern, WPA3Never use WEP or WPA/TKIP—these protocols can be cracked in minutes with specialized software.
⚠️ Attention: After changing your password, all your home devices (TVs, phones, tablets) will be disconnected from the network. You'll have to re-enter the new password on each one. Be prepared for this.
It is also recommended to disable the function WPS (Wi-Fi Protected Setup). This technology allows connection via a push-button or PIN code. It is extremely vulnerable to brute-force attacks (PIN code guessing), and is the most common way to penetrate a network.
Hiding the network name (SSID) as an additional measure
For those seeking maximum privacy, there's a feature called Broadcast SSID. When enabled, your network will disappear from the general list of available Wi-Fi networks within range.
To connect to such a network, you'll need to manually enter the name (SSID) and password in your phone or computer settings. For the average user, this is a minor inconvenience, but for Wi-Fi addicts, it's a serious hurdle.
However, this shouldn't be considered a panacea. Specialized network scanners still see hidden networks (they appear as Hidden Network or Hidden network). This is only protection from random passers-by, but not from a targeted hacker.
How safe is it to hide your SSID?
Hiding the network name doesn't encrypt traffic or make the network invisible to professional tools. Moreover, some devices may even reveal the name of a hidden network when attempting to connect to it. This is more of a "security through obscurity" measure than actual protection.
Use this feature in conjunction with WPA3 encryption and strong passwords. It's not very effective on its own, as it reduces your network usability.
What to do if the password doesn't help and access is lost
There are situations when an attacker has managed to change the router's administrator password, and you can't access the settings to remove them. In this case, the only drastic solution left is a hard reset.
Find the small hole marked on the back of your router. Reset or DefaultTake a paperclip or needle, press the button inside the hole, and hold it for 10-15 seconds until all the indicators blink at once. The router will reboot to factory settings.
After this, you'll need to reconfigure your internet connection (enter your ISP login and password if required) and set a new, secure Wi-Fi password. This will ensure that all connected users are removed and you'll regain full control.
- 🔌 Step 1: Press and hold Reset for 15 seconds.
- 🌐 Step 2: Connect to the router's open network (name on the sticker).
- ⚙️ Step 3: Go through the initial setup via your browser.
- 🔒 Step 4: Change your administrator password and Wi-Fi password immediately.
⚠️ Attention: Resetting your settings will erase all your personalizations: network name, game ports, IPTV settings, and parental controls. Make sure you have the internet setup information from your provider.
After restoring access, be sure to update your router's firmware. Manufacturers regularly patch vulnerabilities that allow hackers to access the device. The update is often available directly from the administration menu in the "File" section. System Tools or Administration.
Can my neighbor steal my Wi-Fi if I'm on WPA3?
Theoretically, WPA3 is very difficult to crack by brute-force, but if the password is simple (like your dog's name), it can be guessed using a dictionary or seen if you enter it in front of someone. It can also be hacked through vulnerabilities in the router itself if you don't update the firmware.
Will the person connecting see my files on the computer?
If your network settings are set to "Public," your computer is hidden from others. However, if your network settings are set to "Private" and network discovery is enabled, an attacker could theoretically attempt to access shared folders.
How to find out the exact MAC address of your phone?
On Android: Settings → About Phone → General Information (or Status). On iPhone: Settings → General → About. Please note that iOS and newer Android devices use a feature called "Private Wi-Fi Address," which replaces the real MAC address with a random one for each network.
Is it dangerous if a child connects to Wi-Fi and just watches YouTube?
Yes, it's dangerous. Even if your child isn't stealing passwords, they're still using up your bandwidth. But the main threat is that their device (if it's unprotected) could infect your local network with a virus that could then attack your computers and phones.