Posted: Thu Nov 17, 2022 3:38 Post subject: how secure is Wireguard?
How secure is Wireguard? Here is the context.
My father was using his iPhone and got dupped into clicking on a phishing message and now his iPhone has been hacked. He was connected by wifi to his home router, a Netgear r7000p running manufacturer's firmware.
At the time this happened, I was on my laptop connected to his router and via Wireguard to the ddwrt router at my house. After the hack (but before my father alerted us to the fact that his iPhone was now acting weird), I turned on and off my Wireguard connection.
Assuming a hacker was on the LAN (i.e., my father's router via his iPhone), could the hacker have seen my Wireguard keys as I was trying to establish a connection?
I don't think the hacker would have access to my ddwrt router which runs Wireguard server. So that hacker would be in a position to see the Wireguard keys stored on the server. That router is on a physically separate network than the one my father was using when his iPhone became compromised.
I'm assuming the hacker could see the traffic on the network my father's iPhone was connected to. My laptop was connected to this network. So the hacker could see my laptop's attempts to establish a Wireguard tunnel to my ddwrt router on the other network. Based on your reply, I think there is no reason to think the hacker could get any info about my Wireguard from the local network traffic.
This leads me to believe I am safe because I don't have any reason to think that my laptop was hacked. Just my father's iPhone which has never connected to my laptop.