Showing posts with label Wireless Hacking. Show all posts
Showing posts with label Wireless Hacking. Show all posts

Tuesday, April 22, 2014

Evil Twin and Fake Wireless Access Point Hacks: What They Are, How To Defend

Hacking is a term with a wide variety of acts associated with it. Some are incredibly complex and demand a high degree of knowledge, others are little more than installing some software on your device and acting a bit...less than ethically.

One of the most common hacks is also one of the easiest to defend against. This is what is known as a fake wireless access point. Hackers use this tactic to easily steal data of unsuspecting wireless users in public places.

What is a fake wireless access point data theft?
This type of attack has a number of nicknames associated with it: AP Phishing, Wi-Fi Phishing, Hotspotter, Evil Twins, and Honeypot AP. All of these are associated with creating a fake Wi-Fi connection that people log into, and whose goal is to steal credentials, logins, and passwords.

To accomplish this, hackers simply use a piece of software, or app, that is designed to capture data that is sent over a wireless connection. Examples of software that is sued during a fake Wi-Fi attack includes:

  • AirSSL
  • AirJack
  • Airsnarf
  • Dsniff
  • Cain
  • void11

No matter which apps are used, the key to it all is setting up a wireless connection that people will want to connect to. When they go to connect to the wireless point they likely won’t suspect a thing. Why? Because this tactic is used most often in public areas.

If you were to go into your local Starbucks, sit down with your mochalatte venti with cream and sugar pumpkin spice, and open up your tablet, finding a connection labelled ‘Starbucks Free WiFi,’ you’d probably connect in a heartbeat (on which is quicken by caffeine, at that). The same goes if you’re on a layover at JFK and you see a connection labelled ‘JFK Free Wi-Fi.- You wouldn’t think twice. That’s what the hackers are counting on - you not thinking.

How is your data stolen during a fake wireless access point theft?
How your most important data is stolen is a little shocking - you give it to them. A large percentage of these hacks take place with a fake wireless point that requires a login and password. Once that information is put into the login, hackers will take it and use it to sign into popular websites, assuming that you use the same login and password for multiple sites.

When your online accounts start showing charges that you didn’t initiate, or if your social media account is taken over, you could be the victim of a fake wireless access point data theft.

How to defend against an ‘Evil Twin’ attack?
There are a number of ways to defend against it, I’ll look at some easy to understand examples:
  • The best defence is to always verify with the wifi provider. Ask the Starbucks staff what their wi-fi is called, it can save you a massive headache. Always remember - if a deal seems too good to be true, like free wifi, it probably is.
  • Use different login details and passwords for public wifi.
  • Disconnect auto-connect when you’re in unfamiliar territory.
  • Be cautious when connects suddenly disconnect, especially if it happens for everyone on the network. An app known as aireplay is capable of disconnecting users from wifi, hoping that they’ll reconnect to their fake wifi.
  • Be cautious of certificates. Good websites can occasionally send you one, but if this happens over a public wifi that you don’t know, it is best to back off.
  • If a wifi hotspot is interfering with your VPN, forcing you to shut it down, that is a HUGE red flag. A VPN is a great defence against this attack, and hackers know it. Forcing your VPN to disable when you’re trying to connect is the only way that they can steal your data.
That last point is one I want to look at further. A VPN can be a great defence against this type of attack because it encrypts all of the data that you send out. With this data being encrypted, even when you create your login and password with the fake wifi, your data can not be stolen because it can not be deciphered. We review our Top 10 VPNs over on our website if you’re interested in learning more about them.

A last option that I’ll suggest is using SSL-protected apps. These do take more care and thought to use, but they will offer you protection that is similar to a VPN. Some hackers have even found a way around SSL protection ( the BREACH method), so you may want to explore using this with a secondary defensive measure.

The overall advice is to be cautious and verify before you connect. People look at me weird all the time when I ask for the correct wifi name that I should use to connect to. I’ve never been the victim of an ‘Evil Twin’ attack...I’ll take a funny look or two!

This is Guest Post from "Marcus Habert".

Continue   Reading>>

Tuesday, August 2, 2011

Bypass WIFI Access Controls using Session Stealing-Wirless Hacks

First, you must have the Aircrack-ng Suite of tools installed so we can use airmon-ng to scan for active hosts:
**IMPORTANT: Your wireless card does not have to be compatible for packet injection!!! If it will work when you type airmon-ng start then you are good to go! 99% of wireless cards will work for this!

Continue   Reading>>

Monday, August 1, 2011

How to Bypass Wi Fi HotSpot Access Control By Session Stealing

 In my previous posts, i have explained what is Session Stealing. Now let us see how to do that using backtrack linux and bypass the WiFi Hotspot access control.

Step 1:
Boot into your Backtrack Linux.  Start Wireless Assistant in Backtrack & confirm you have some wireless network around. Then you can click “Connect” to that network. It won’t let you connect because you are not the paid user. It will open up browser and will ask you to pay for usage.

Continue   Reading>>

Tuesday, July 26, 2011

What is Session Hijacking?Bypassing Login using Session Stealing?

Know what is Session?

What is Session Hijacking?
Session Hijacking is Stealing the existing active Session. The main purpose of Session Hijacking is to bypass authentication process and gain unauthorized access to the computer or Website. In simple words , hackers will login as some other client using their Sessions.

Continue   Reading>>

How to Bypassing Wi Fi HotSpot Access Control By Session Stealing-Wireless hack

If you are a paid wi fi network user, You will pay per hour for Internet usage. But you can use the Wireless Internet for Free of cost. This is illegal method, I just posting for educational purpose only.

A hotspot is a site that offers Internet access over a wireless local area network through the use of a router connected to a link to an Internet service provider. Hotspots typically use Wi-Fi technology.

Hotspots may be found in coffee shops and various other public establishments throughout much of the developed world.

Yes you can use wireless Internet for free but how? Using Session Stealing, you can bypass the Wi-Fi Hotspot Access control(Wi Fi hotspot access controller is used to control the Internet usage - time available to customer and bandwidth speed and quota.).

Usually the Wirless network provides pay per usage service. Users have to Pay based on their Internet Usage. Whenever User is connected to wireless network, a unique Identifier(known as Session) is generated for the client. Based on that session ID, the internet usage will be calculated.
Black Hat hackers Steal the session and they use the wireless internet for free. The victim(client) have to pay for that.

Read more about session here:What is session?

How they are hacking?
We have to spoof our MAC address . I mean we have to create fake MAC address that will look like the network that we are going to hack.

You can do this using Backtrack(Security Distribution) and aircrack(one of ubuntu software for hackers).

Let me explain in next article how to use those software for bypassing the WI-FI Access Control.

Continue   Reading>>
Older Post Home

© Break The Security. Copyright 2008 All Rights Reserved Revolution Two Church theme by Brian Gardner Converted into Blogger Template by Bloganol dot com