Mobile & Wireless - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Mobile & Wireless


Evil Twin Hack Dramatizes Wireless Vulnerability



 By: Jim Rapoza
2005-01-31
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Mobile & Wireless story.


Rate This Article:
Poor Best
Opinion: Evil twin schemes show that public wireless connections aren't safe. But didn't we already know that?

Thats it. Im ripping out my wireless cards and throwing them in the garbage. I just heard the most terrible thing: According to heavily covered and overly hyped news stories, an insidious new attack method called Evil Twin will make public wireless networks terribly insecure and dangerous.

Oh, wait a second. We already know that wireless networks arent secure. In fact, weve been saying that since the networks first emerged. And there is nothing more insecure than a publicly accessible and unencrypted wireless network.

I think the recent stories about Evil Twin fit into the same category as news flashes about sharks attacking swimmers in shark-infested waters.

For those of you who missed or avoided the many Evil Twin stories, they described a potential hack that was recently disclosed by a group of researchers in the United Kingdom. These researchers found that a high-powered wireless access point could jam a legitimate public access point; the high-powered access point could then pretend to be the public access point, luring users to connect to it (thus earning the Evil Twin moniker).

Resource Library:

By pretending to be, say, an open access point at a popular coffee joint, the Evil Twin would be able to easily log the traffic of connecting users and to steal passwords and information. (This assumes, of course, that the users and the sites they are connecting to never heard of or used encryption.)

The Evil Twin scenario is somewhat interesting but hardly newsworthy. When I read about it, I thought I might be able to get some widespread news coverage by disclosing my "new" Smooth Jerk attack. Using the Smooth Jerk method, someone could call a new hire, pretend to be "Joe" in IT and get the new hire to give up his or her password information.

I also find the Evil Twin coverage absurd because the attack being described is so unnecessarily complex. Lets see: Im a malicious guy who wants to steal information from people who are using a public wireless network. I can employ the Evil Twin tactic, which incurs expense, hassles and risk, or I can quietly sit on the network with my laptop and free downloadable tools, sniffing the connections of all the unsuspecting lambs around me. Id definitely go for the latter option (if I were a bad guy, that is).

I mean, why even bother to spoof a known public access point when people will happily connect to any open access point they can find?

During the holidays, my wife and I stayed with relatives. To connect to the Internet, I logged on to one of their neighbors open wireless networks. I dont know this neighbor, and, for all I know, he regularly logs in to shadowy sites and chat rooms with the handle 3v1ltw1n (hackerese for Evil Twin).

But I treat any access point the way I treated the neighbors. Whether Im at Starbucks or sitting in Bryant Park in New York, I connect to a VPN—before doing anything—to encrypt all my traffic.

For those of us who have been using wireless for a while now, this is standard operating procedure. But a lot of people, both home and business users, dont even know what the risks are. If these people find an open access point, their only reaction is, "Cool, I have an Internet connection!" And off they go, throwing passwords and log-ins around like confetti at a parade.

The Evil Twin stories basically remind us that, yes, fire is hot, and IT workers should use this reminder to make sure that mobile workers dont get burned.

Click here for tips on avoiding "Evil Twin" attacks and rogue access points.

When setting up mobile workers on laptops with wireless capabilities, make sure the users have been properly trained to use a VPN for all Internet connections on unknown networks—wireless or wired. And if you have a work force for whom training isnt always effective, you may want to invest in system management tools that will lock down connections and enforce secure communications.

Unfortunately, home users dont have an IT person to help them. And they often dont have access to a VPN, something that companies such as Apple and Intel should be providing as part of their wireless bait to attract new customers.

So, yes, sharks bite, fires burn and wireless networks arent secure—Evil Twins or no. But thanks for the reminder.

Labs Director Jim Rapoza can be reached at jim_rapoza@ziffdavis.com.

To read more Jim Rapoza, subscribe to eWEEK magazine.

Check out eWEEK.coms for the latest news, reviews and analysis on mobile and wireless computing.



  Reader Comments: Evil Twin Hack Dramatizes Wireless Vulnerability
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Mobile & Wireless Articles          >>> More By Jim Rapoza
 


x}ks8q8c=mG-9ƶon"!c䒔wro7%?9q*D /4Iș3!9)ٝ0Oo-zIjûPAeFAUM7 JԶO7RM3i /47wGlJ~x'AT{j" xL5 ΚMH]ٚ7'x2)X $8kzZ'jZ$l(P8 w(ZB; ?+B4m$oqT}:XP=2rН3ݟXBT Kt/"(?c&s8;|'Ț?_h@Q5w0NK <[8 #5nCUVekF֠}lui!l 1!osݿ!HäNޤ@d jId::`YTi 1܉\Ї@ڮSVPf̲;o tG oc}uק&[! !$f >v?& RI'6q_F^_3'@8:)|E[5'0m_k|tfs< s~3 CoZe؄j% =y7`JaCzJ&5\_-׉E>7 ؗY͢Aeʆ}sʾVWR\Wί╻]`[BUzEÝzc4:~)UUe=,GA GnGkp[I^׵Sq={'r9;{'׼ ;A7;YHL~'/@DJ V,MD&-ԁNVP? uΑjQ2[N-Kj%ɥ~hY̞o fVҘ 'UUXA[~6t.˫nCӣn;lL,!V4*V]?c[ˠjq}Ҿ~^{}rһ"ΧqٝF4pgs ZʟZr\? vlrK,.iTW%+OeLCxY$Y.r{&8CJ ݖEL_*D\KŗG)LY4C! ,2ɌcPu t:C;|sƊNmҔ& )B:%Ϲu(5Hr Q@a)#8?S%i8@r5XSl \OFo4'M3XE U >hi,A[T}N}W%M 1F|r+E KH@!}F!8N0Apl/\d~]LãQwWڲ9Q[% kK\M흚"#-+}י4O:ǫN/{~:PqJ"0"- ]evbckꛛZᯏRa^TU G&-d`q86acBݤc}nE=aAgEy|FMk>ktI=XC#ʠ:ڴ;\VS4!&- 'pbdx: }# 0f4mLH"AЂMtT8n]`2Z9ܹ ([ hk= `Dy+wMGHb1(=զA{Tg,zC {k6G~[>l0szQN\Q@m2)%%E24.'H(AH 9[h ]99z|?#!bRN[ T6ݞH:s'PT+esMX)gQY,p[/)Pf%5{~6 cbB|#'&Xr`Y \d+|i)lb 6؛ri:|:ioBg< 08Bdp=[IZ&1C IK,tt?;\ύ!7!q"-%`|fX4Кs=RA\^XPL[Nm)tsf9`ZƔWjP~A-QM;luV<ۢfA8 u k2ZE'6`FTTMZ|!||=Ꭴm[_4@W*|zS.z8؍8r!O5kb$`CO 룔YXp$8hS*}a5*403<`m1Lx>Hx# d\6V,'Uzq3ҝlia?, {EKIYq>O:j+@o{LrCm0 ǖ "~XM{b^ /B~* Ҩ`kLĽf2,rǮmwAuF֝<}Zj[<>9!Q5> 5 4 ıςL׃RUaX8j]pV~ 2­qŝa&1 D&R)Ö13wdiG{םT&/A咢TS4q ֚pDr@uߘʓ@gӐ!ak"A>4b> \RXt> j +$X8:T:4f6W߀RI?I BL!Bsݧ}=1g 2`B{@dR`ZUU+òZP+7cSFOX5`Cw<ڗ!꿢7~g2-sgeH): gn-%s㓏Sp)## ,c`2$hW S̸T*i3B#М w 'L-n0-UTKVG=ibgHom<]tC HQAq{kOM?r '%:"pwC+:2 XX `jDa#CP`wV8%+ #mQJkm vV; jS~i3H%~Kˣ ,G2>̌k}YP~n`7,mcD H!S#2!z p[kh0hmf;;pLjg %Jk欩x+sJbOW2EZiz|ylƵYX{E3p{ݹY$'w&J y.AA/5r?H]mM;fr/cS>+#W5 HB"K>aL:T{% s0X3f~ru+u08. (wtfXuLzRB71PUL xg4sgDcC6VNL&Wm"Z;"ҚVS,!$*sqS(j L:H$ 3yˡYF s_5f^u,σ2weM+t׀mkZpW|L2M#uL!)Wje>e!eO*lWJ_0]PX9H(P+ Yz>Gɷwnj‰<8 +An)ɑ$ |C*ͤ D;}ZTe&㜘= )&l JV~ZgZSq=Κb2;?RT_;?\wۃR6Ib λg zut'_Awq[|HN;8M0^x;^j\/šI݋vrH`QUE[ꞷwhClYj2a'A)hd]1~ܮv{^F:'(Z@q F޹s޺z߽_>ICrֽH^'K֓!7*YˁBV=gUti)qfm2XH<2u\8$ ST8 m̀@Hc];WX0z!ӱB3ZOUc)|F ʢjk:Mxy~Ukq % Iku:;@   kJ=!Vohwg{k D bT0_RFI$Q#=-#hYsܻjq# l}AǯNd~N Z-g[M7S+d$c?]/8݃ϟŢ.WVZǭOwGH$Y >u8/wbP!B48r 7{KP .M>uR2MĔyk.NEm {6-~8 clwQ(S!t$-zbeQnKlx0cRȔ&=J8 z>SB&Դ5˓4-i^Eqj ieʒ~ j' ۡX#֛_.6G8 (OMkzisy/P{~%3sgKeҊ Pk q,RH>bG-#*VZZFZ-VyʏxitH1=aLHM\ghNPD(Vp%hh*f>VAk6Ê,;x\J}[<,'Mw[1C=r٠sEZ Q+}F'y tD#(oZ7۸;.z|,=}!G&zE>qB.Z=w;o e's CݿwI]iNw7-HUFᚎx P?f&c:I"IQU֫UdU)I}Y)'Ó?8LFxL_uoFǥwD/MZ2gP:;f׍qGe#F0XovƹE<@07?~eܰ+w= =z» w.+R!EkE7_SU+ TWg"&E%:#ڬ/ۥ{﬐kY\dbSOٞo ?֘ '|ȞcԱفȣCX ?*4lo@[)-)$ΙxH <v<..߮ B;FJX<%N>۴rUCauk§ ,'iƿWc#ޚU=9dnsaZlLc)|'Ic$/n՛_<d.} ]"b dAM CXw+[m د]y}oݲdqP'1m15J}2g-yD|0oPaj[94oUQ8л5ެ51yc{rްm@Paa6ו흖dB!-P Y|(gL U-؁̌v){P6I)0aQ:ä ʃΌ(B>u更Bb 5=9ffxw:"S^>vc"Sbގ#Ȓm shh'5mZR1th}tRԶj췖+I@1.7R뛠ƗG-ܼ7%kJs7t֥dұ?(Ci0QVPUpgX\4%OF M@{R9lVf!i>ה՗"(Q)Et~qTyLsTQn}HfcAp> m7V$VMR6 kO'1 a&c8~q12 z }#u-_t܎D\Nzi}$eP1JzZJH}Cs\֑Kz3:6i qGwwwww@W4T~:W/~GPM u/)={E"*V@e׫O}úE[3Η3ϵubI05"t᲍ 7 V*̤H~%" $!!b+4!<ݺMK}tJ`xi9I3횬N?xn@BԜWWS_}*jO}sC++|*D7B5a2? ==)R͍mH)lMЕ\}r}IEQ]s+΂5*%iI:wK~E+kGY,AlH/W'u,j n"N.}`&1@z]="<)ِj/%:Rw71r7ݎi?Dy |cW)^2c 3$WU MEO09,H{,ywwww7jI\bl(#V)WTQʄ3zE/h-͉eH]FwyBaʺ ۷$K\\pйC0+ jբi_[I|&/v]UE$D_<}џg[Wx.^ϟ')NUu A˔qG&i!i>q7?mcnc1;`dMi8v,Eu-_x}l.~CY'Pbd7K7cԳU-t>HkݾLa9JĦ"uF 0AkQ_EF~}fd$E}z#3 /|e@c'皁5|iwe<~ƼM5v~ dM'Eߞ9ao:5׺ l8a ͝o~H9\vLl^ mwk{- cq%?ޝꗧ=r=ZΥj30 ZYtĕ' 2y(/! <5م=+={ \nOn=nbuמS|l:jj}<.f$Z(R^qood᫩EPX!:(9tѰȍ L68~܉")fF<&Lvh;b=VںBqwz2Ko^7G'knVu(#[wnV9cOnH)G[TSvXf 17w%)Xr#@mf|5,\ A4`]*nZ$24$^UP+)Zzʋzhx@ZהV/`eE1eY)J\i Cϭ W,z,T_HF=yԱ8nd##Tr^͌iɮ~JTa >eO}K[RJP`o2?o(Hc'% <z9~Z2֛|\B/&,12R$ڶ}ޞ+j7$>Itl'&vUZ R j' W[ "yFskJsđ뛋uNc05,9) xfV棭j-FdG0 ,,vHa1q< @ȩ莥aCQQ}G,_[FFVOF6وڳb #$T\Q=|t1ц]ֿ|Ɍֲ:m0ti25~ dO(<1^*Z@(YYr' .'G>aWov/?VHzՕݷh}extJ"6rG:-%"iB#:&_.OFoJ^j$'wp ?>|6ڄyiǥ4Y0 &؛Yi̥7f?= .θ9C{ǃ""a=X@*>ndeH&]YUc `xN!f=gs? >zxX2b9kv{`#GiaP 죇L gGr0GW=0zd+2ta-=peL]]w7]an2x :aCPn 1YG7`C[5EY|obp ?Nں9P?VՑt.?BB󴻾.4r_7^C9/4?s?Cg,>hys~s{993>3 /1>Arߧ}}5_^55uu$!(oYNoR8G9B(^*Uy׀a uqS9@yJˡ*,c/s\-*sҿw2~62A^u CFW\=o /dt^k8&ֲawp_l(_xi +{Ihz@ⅇW4:<)X9vFnmeybAR̥-c@#mq84+wsn ]vSga#f^*'B8D3`%!/`xI=sUh ;&nLIL=#.fкUh{fA3aush4HjYj ~ZV-#\!p=b`BCUUEVrp` VU+D`I9CTx|Feiҫ$9!C;b;h8[閾@=B^?AO'^ _ŗ1 {7/Mu?- {_A #Hf@"b'^{z98 y0`VI2h֐C vؒ1J-#G1bnټI0SkC#҄dYBD˼hbӣyh)Dq1<:$ed` ۢf'Շo\ܗ.LECzq ;D8,[aYd#Lu`_{:~ sn76a ƘSCM In_!g]]gf`|!ٻU0>Rhf~YΈ( 7K]^NHKcIXa\m8N)8q0݁u>p?70e7ƝT0ߚN)G$LfLe~u҅Of AL IX|1@u4b5V$G3x7X05:%xh(1l2({_ ܔ0brf`O*{q GAnzvwʹXeey+ufpɯ RO^ێY:%ZgG"o[֌OEl9r b2Oty'0OqIgĈIL nb[>/I>=K}~dɞg}|q0u"˭Hz}A|l+>AыpaHyBXϑt$E,MWZ8:Z5N&zU Th6n"1pΆl/xA]3zlo0) %KlClnWIggX|@ăw!$K0VTp\eCg)rD~gF}&*P=Em-Er};{/d/+1bNХvk*Yo K X)tmǧ|oW|B,Kl`yVBB`t0)p*sC@_ܹeUhJm[9Ud2-1kc'p'!-XP[:AW ݟ,~L޴#HPVWݜ Xo|8j-h6AF|Jw >D/7ag} r@c]Dآ_n\nnYc.#sEX,8/ kuf㿵;ƝOQ w-91-"ux -] E pymӕ/y9" #VJRX}P?(:OOgsZ _Hʶ› *q~X^c 0,*0%9G5E6<:=܈xv;ݾp 瘾k3HUxϮX=lۉQ#nȹ-`jkDmYtẉAU9um j ֺW6xyc|[D$5ba2(= zBk|XK]s.n&tԵa}aj8Ls$Q3|JKl 轇yȝoz^ɴj}XZ# *f"e,Z*bB؉ZIpR!-#79=GBJiF"5cP!X$]-n/B@w: εxC, ʋ| ×yx Uf}')VS/́.?I&\9ƕEYXqϩ8Wo>u)Z_,w1NZݳ<|;Xit0y']e*FRqOR|?(>3u㆗?}hKQEy遢%!ڝ,!ջl݋xUοa*XElMc01B4gr09b֎VMM2a-dc嵉_ l,