http://www.vnunet.com/vnunet/news/2169400/expert-warns-evil-twin-attacks By Iain Thomson vnunet.com 23 Nov 2006 Locations popular with high net worth individuals are being targeted by hackers using phoney wireless access points to steal personal information. So called 'evil twin' attacks involve putting a wireless access point near a commercial hotspot and giving it the same name. When the unsuspecting user logs-on to the bogus hotspot their traffic is monitored, personal information can be gathered and in some cases the computer can be hacked remotely. "We are not seeing these in Starbucks much, as there is not much value in a MySpace login," said Richard Rushing, chief science officer at Wi-Fi security firm AirDefense. "Instead they are targeting the locations where the better-off are hanging out because they have something worth seeing." Rushing explained that 'evil twins' had recently been found in the first class lounge of an international airport, and in garages that specialise in expensive cars that offered Wi-Fi while you wait. Train station lounges had also been targeted. This form of attack uses social engineering and hacking, since a key part is lulling the suspect into a false sense of security but mimicking a legitimate service. It also shows the extent to which hackers are having to deal with information overload from skimming too much information to process effectively. The attacks are a growing problem for security managers. While corporate Wi-Fi networks are increasingly being locked down on installation, it is the individual user who is now seen as the weakest link. _____________________________ Subscribe to InfoSec News http://www.infosecnews.org/mailman/listinfo/isn
This archive was generated by hypermail 2.1.3 : Thu Nov 23 2006 - 22:53:19 PST