Hacked?

[Pu-239]

So for some reason my router settings inexplicably changed from WPA to WEP w/ the key "werwesfdd" . As far as I know the web interface was not open to the internet, and the wireless should have been secured- I did leave the default username/password on the admin page though.

I've reflashed my router to be sure, and I'm fairly sure my desktop has no vulnerable services readily accessible even from within the LAN- should I still be concerned?

The only attack vector I can think of is some malware on one of my sisters' windows machines fiddling with settings, but it seems odd for only the wireless settings to be changed (DNS seems intact). The WPA2 key was fairly long and so I think attacks should have been difficult there.

[Edi]

So for some reason my router settings inexplicably changed from WPA to WEP w/ the key "werwesfdd" . As far as I know the web interface was not open to the internet, and the wireless should have been secured- I did leave the default username/password on the admin page though.

I've reflashed my router to be sure, and I'm fairly sure my desktop has no vulnerable services readily accessible even from within the LAN- should I still be concerned?

The only attack vector I can think of is some malware on one of my sisters' windows machines fiddling with settings, but it seems odd for only the wireless settings to be changed (DNS seems intact). The WPA2 key was fairly long and so I think attacks should have been difficult there.

If you left the default login names and passwords unchanged, it's possible that someone got through if the WLAN malfunctioned. A WLAN malfunction may have rendered the WPA2 encryption non-functional even though the settings were there. Most common manifestation is that the WLAN simply stops working for no reason, but I wouldn't be surprised at the encryption being disabled temporarily.