1 - study the features of connecting your provider. if login/password or MAK binding is used, forget about all doubts. 2 identical poppies do not live in the same network, and you still need to be able to steal the login and password
2 - in any case, work with the provider's support service. even if they are lazy and stupid , what happens, all the same - real problems, you can really find and solve, only together with them
updit’s still more fun - you either have a dynamic ip or a purchased static one, in any case, billing (billing) is carried out on a specific ip, and the freeloader will not be able to have its own traffic on the same ip, only mirror your traffic. the question about the insert is more relevant in terms of information security - do you have secrets? such that someone would be happy to spend effort in the pursuit of? if not, relax))
upd 2 secure your router - change the admin login/password if they are default, block connections from the wan port, study the session logs - and everything will become clear
upd 3 if you carefully re-read the article, all your concerns are resolved in 5 minutes of a telephone conversation with provider support

lurkmore.to/%D0%A5%D0%B0%D0%BB%D1%8F%D0%B2%D0%BD%D...

The only place where you can now safely sit on someone else's Internet is to hack the password from the wi-fi of your home / work modem.
This is impossible on the WAN provider site - billing or 802.1x will not let 2 clients per login / mac / ip
and in any case either one will fall off or both will be blocked.
Noticeable drops in speed are most often associated with an "economical" expansion, when another cluster of subscribers is hung on an already heavily loaded switch and the entire microdistrict is knocking at the data center via one gigabit link, or 64-128 modems are connected to one 2.5 Gb / s PON port - naturally in the evenings can be dull, especially if there are QOSs on IPTV and telephony

In principle, if we are not talking about vpn authorization or 802.11, there are no difficulties in making such an insert. But why?
With a VPN, it’s more complicated, it depends on the provider, if he didn’t take care of server authorization, and you didn’t keep your authentication data safe, then it’s also possible, but again, why is this needed?
In the same place, in fact, you need to crash into the cable industry, you need your own equipment, you need to provide it with power, there is always a risk that it will be found. There is no point in doing so, from the word at all.
It's easier to agree with you and share the Internet "amicably".