I start airodump and the ap displays WEP WEP,
Then i start injecting to it trough the mac of a connected client because i can't auth because it doesn't reveal it's ESSID.
Then the strangest thing happens suddenly airodump says WPA WEP (ENC CIPHER).
How can this be? Decrypt also fails even with 40k IV's.
Sounds & smells phishy.
Not to mention that if someone in your company does not have access to this type of info then they have bigger problems to worry about.
Think Logic Bomb
And as was stated this really is fishy. Good luck
A third party security audit is the IT equivalent of a colonoscopy. It's long, intrusive, very uncomfortable, and when it's done, you'll have seen things you really didn't want to see, and you'll never forget that you've had one.