Mobile & Wireless - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Mobile & Wireless


Evil Twin Haunts Wi-Fi Users



 By: Matthew Broersma
2005-01-20
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Mobile & Wireless story.


Rate This Article:
Poor Best
At a London event, security experts will highlight the dangers of wireless networking, focusing on an attack called "Evil Twin" that steals vital data from users of public Wi-Fi hot spots.

An IT security expert, an academic and the U.K. governments cybercrime unit will give Londoners an introduction to the security dangers of wireless networking on Thursday—with the star of the show being an attack method dubbed the "Evil Twin."

The Evil Twin is essentially a wireless version of a phishing scam—users think theyre connecting to a genuine hot spot but are actually connecting to a malicious server, which can then extract information such as bank details. The attack can be carried out by anyone with the right equipment in the vicinity of a legitimate base station, according to Dr. Phil Nobles, wireless Internet and cybercrime expert at the U.K.s Cranfield University.

"The [malicious base station] jams the connection to a legitimate base station by sending a stronger signal within close proximity to the wireless client, thereby turning itself into an Evil Twin," Nobles said in a statement. Users are invited to connect via a fake log-in prompt, he said. Nobles will be demonstrating this and other attack methods at the Science Museum in London.

The free event—which also includes presentations from the U.K.s National High Tech Crime Unit and an IT security specialist—is designed to give the public some idea of the potential dangers they face when using public Wi-Fi hot spots. The U.K. has one of the highest concentrations of Wi-Fi hot spots in the world, with over 1,000 commercial hot spots in London alone. Overall, the U.K. has more than 9,300 hot spots, second only to the United States, with more than 22,000, according to online Wi-Fi guide Jiwire.com.

Professor Brian Collins, head of Cranfields Information Systems Department, said the dangers will only increase as hot spots become more common. However, like other wireless security experts, he said users can mitigate most problems simply by turning security measures on. Most wireless laptops ship with security deactivated.

The popularity of Intel Corp.s Centrino chip for wireless laptops has played a big part in popularizing Wi-Fi, according to industry observers. Intel this week introduced a new Centrino with additional wireless security features, including built-in support for Cisco-compatible extensions for WPA (Wi-Fi Protected Access).

Several security standards coming through the pipeline, such as WPA2, are designed to make enterprises more comfortable with using wireless networks. T-Mobile is introducing strong, 802.1x-based authentication and encryption across its network of 4,700 U.S. hot spots for the same reason.

Resource Library:
Check out eWEEK.coms for the latest news, reviews and analysis on mobile and wireless computing.



  Reader Comments: Evil Twin Haunts Wi-Fi Users
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Mobile & Wireless Articles          >>> More By Matthew Broersma
 


x}v89hN;k"i;Rlɱmc)ϞHHb"9$eG=;/qܳ/ϸU%din["PU( Aȅ=%(ٟ;ȧGMIj}ݻ@CifA)R c3, D廚fw2vS;^> \?g#Q;Y|'ȇ Tr3 `%r̀7JQ߸pa尬c\BviIna>E4a™EQJ,'ɰ#?[WMo%M{Yf0R*C ATt6?{Sfq{ֹ}]urֿ!iwYx0p Z?`KK'^CsS&ںa#5CI)C:t%޺pr;%Io˧v?·پBd{U З77g$,Q`M|Ax 2Tc]vjGo ZQ G/<@#D0Sf4M5 ,egy05AM)61v%k 3!RBʼZoz@U@jR~nV(9USR)ތE z%K%bO|૶yt>fY_7'ta}Mՙis[J ށY=pujO S3G#VвnZ ZƦcTfq\KJGg-dj`qaeJݠmaEw?# 6aͩ6wbkx>:ACA4icŦh@g&h`CzCҏ:Lڠ w&bhnx c 00wLP#iAтMx>tTڎ]6}l29<8L&&zr7t` VPC[h9N@tmS(r`>s9{ʹiǀxX.%w2F}c.G))$C[]HPw9J B!B0HV0(VF􎄰j%iWlju gꌔjsvn<V+){TKh!+K@fsfh(4{~u}bB+|#'bXr`Y \h+|i)lc djԭeJt|:IoBw21u0KҺ>,L mX&)# K8YvfxFXvOnM3S R g?fx0-qڛ9uVs]ˤF`*,q;rdžfXi8gNm~|FpIN3_iy>grGֶL/j @~V&](\uΩJJ&k&HY3j-yspe{ kFM'W-mr1r@@--Sc`Da Lzb4sm/n$)aV|\wΖzfzQfv/KƠZ=߮ J[( MrL5q ̠ecLGuk-eRk ò =2P2 Cx Eä 7sGG=k0)\V)KakTՒZ^Ϛc+ L 4% TlVCaxZz As, \O{L \q /6*||0ː ;s C5,v&4fj:Y[^|'+ȁUrqX˹kjpx0uׅ}- /_$g7.i+BoLsCm0 '"|ZfWHLZ`!?j(1IO5 &^PGe d^ `M[`R9Dz| lF% CQڮ>-J.M{ \iYD83,OA]4$qxs84\+1*Ly.rU^)2qÝa&?@R)Ö1sglieL-*I/rTKC'Xk5F><}&O}INtxOF ‘"yje6\.1|":VD0pl@;RԒtZC ^qqJIzhdT_x>P7Ϗ9(gd%d)'H(PkRWz~q{ ߥ:8r&}yWtgϷ\Fm^>T:[JF?#0t.rȵds|eLu@jAbv6Q$g8 MGFi$]A /ur-}&q39旁 /hy2抪VbL4Ω,6 خiϼVO_3OwžqXmc׃0 I'}w Wy-=۠9Tb=JRx` fΜzli*eJ/(QU-q'F.҆^%{N1 Q,v}b;LʺHG٭+mpe l&SJ^/ւ `Pjz`"Dn(}pfPzQr 7jua>\U]yT6#UR/וj)~萫~EZ`ЯxLl \%\{ i0(Q󩋗afD}R/)3nQ/ ~egmR?PG te[U`2W4$NcqDb?рh)k03f YqH0ש I-7ʒx̡2e{SV$~ܓG\\3C4}3݀,L)~3G1Ȕ&)Tj b[kc"a!`0Rk|VD( e~W9ـo9 |V+ˇu+dP\xO+4CN\i+TgnB'+cI`U[q`w0Dr*f&# 1114/xya`zYm'O(0h_pm;dU]uv'HGޏ.wUO}ֿJgŧ#ykKxiïRX#.lb8+} L@IP 4p=&ikcO K7m{6 #8-odD4|?/ޕiÏUWJ:7_w9&!/z﯎XF^9oOM1Bk;d4)(3pX#FD/h!M{ÙWb9I.Dz=d_Ug0t8ьZkos~uk `!W_bB!bA<؇A(1 IGtzHvZgp跇" Bt 1tJ1(_RJMQOYY{ڿis3+loL^(ޯ0[IӷoHW蘧Y'D{_q+=?Uni'uzI‐׉ NA~r_"c9r 7?xKP -M?voSo4 jGykNEm{-~=`rr(SI%M'i6. [5Kb9JJ<:<Qd:f,O$e=lVI2 KBh%b"C+Cg 2n_mOpVHp._BƗHΖf̗4.נE8V#["|')-&GX!*VjRZz]*$'?vK81 Ibؽ!OsP +Ƃz eNx>HАݛS-p9#M[O_zfi'  ]sOA}i^wl'UfᖎyZ J}~l/t>D(E_g{wc׫Ȋ̅SrFtZx@2&^%3 =яki^x̠tu遧w{{!.M45E+R!UkEwWU+7E&%:mחB}޿6 !bi4V3ZTzQc%Fs?^3ϗt<^,a8]?6#,Ӝi4rMQa.fş&8Y?z9/{v7X)z[4}aK%ae, \Nz>F/HD~M VG3ԦV|LIPb ]%mB9u;FInA φy8$xH^_U(6MnJ>㽄sM@V0j2Lxp,S꣏gsNH=4ݰߔ,IlvV{?g R8WY(+8d~Hƈ߄_d:"kɡ 99yT, 7'OljRL>Y F&0qѵqrucĕL"Z/ECVVE#p0ޢA6#~$]31Y D /mP7O5*$Jqy#H?bPQ1T9"L=k{cN.k%;/I4/u( E{Hܥ0\=htYN-%v;KڐNjD828tv1(^5+j`!Es^aS~ (x<îUlڛ6y0 7 6fU*9`dL8=eV [p-4I"+X:3J"L)zRlE dW[URY*۲YEe`Ѷ deco|CPzXv¨Up%$*SOK#ėG}$/Xc:l&pCDj6jYcGrDd7[߉\ֺ6sIy_ Y2Ћ6c|A]R*o;ȵKΗZHgλYLR2@˄<ݘ[QUZ٨Xf,Hlo;sK~vb `-V#A a6ԫЎ+GXJ95É(6ooooįO<c}u܊4mΊJ Éa-P$Hg/BUN|Z_Jj~sc~sc~sc~sczn7foEb72Xhp0C_g}>E(wfꦃ{@<7T&ru%6g懆130OM]zhw-XZH$_+u&K\.A%] $BB=:gxyOi^<͑>f~ؾ񳹋A $E^!?"ܷEmͯ# ҕI0q{RwZΒ׎OQD5/CBz}of WH h2_%AKR+$z6M %? oA{s񺥳V~˻?gfssH#g{ïFtm[e3bcLrf g$~(LS)-Kfm#J⑸`@L(@i{'2di=La$kE_A-mѴjgϡ?6 ?"ͨ4$p{#O͟z.G"-{s?C* O2 }ʲfSxg vfa :6M]wr@~s+Zfv^xK)LűI|9A$H u''MstRx+w*{Tē9]~ODZIk-('>?E7Au1YGyȿV DŢWԺ= )U|5X%ZR]ņj6c#cYx|ݸDEDTi.bcEUe9LdUŠ=R 0KCX^qKS<0&c~4ePS]wmZį[5#rd! `Ro,"exaoquQ% /_Z6`;\P3 m͒ͲE 41ހKf~zz_ZbiE.cdDo03j֘1h*B UٜAK5Z!ѤF,GZj>A1Rhs05̈Gbv mz^C>J;7^A6]4_q=!o7_AfnVu$2FcK69#On@ϭp'Ac,k7w*n[Fv [kx6_j7R!gI ]Z 0!)5l(ksKUVkʋZ`^P:PKuQQ,%,b'c0Ęۏ`^r¼y֒ ŔٰT L> Мd0Y.3G 6| Ag|[2@ eˡqUc\FWw&^ڨ]LGAb?v07x.U%&o[I{=lsb':w^`ci7tK16V)to|HI -gQ/;Oļ^sn?La.=iXYrVf@Whͬ*J=!V\Jc2+",.HP)q:.ɹfke dRp߷~5JCz%rc̦[q{Z oLm،iUh-!mF2xfOcSPt?cHC c  DŽ[)JUfwܠ~z*ڟOeh^fnkFiqb+Y!kbb<ґk+qܕ.5b-,*tB`߄w^Бp8NN}t\:D~VNd>MYdRNґu m{A=~C|DLRO›+\vD_+_!߰VIm{7R[ $y@?Z,DDP% iڽ rս\t=<{Kgݤu@BXțka@S[E oJg0u r`(^zgnN?c<}_кbɧtC[!e A1Hsvrs5(ƈ]尟aLGp=S둬-2Șh MQ 6HxDf0`MκNBE< ,i manN*a'F$1Ʉbaں`3bwv]) ,/&;5cVZ|"{X#&3(-+9_k~ SdIFK1tQ:.( oIYPXP؟?pkSJTmn$|s ?Xi0ssXc- .E.Ӈ;q>0]&1I%Ln 0]YK7`C'[R@ g >򽉱0u  3RC´vxƢҨ<>& .ycI ^yN4xXLMOόu;3u_F`p3W .5z> MF Je>gٕa)豢T J_SoSw^7kXWz+iT(++I- ;^i`50 }a3br4nĴOC%'ӛ׿"'݋-¶6-Z#e;NןzWհ:3=1(Kyml2/*v(P]/NYPʹ٢ksYx9%Ew%qMKO7xRv} QJ/Na01StnO֖C~zƋxYj1r;ZTmx9j0fI3` p!>Et/CҿZIJ///r_r_so& )Cy?9}]t9P~]~9ˡ{{y/)zr_/]C{9ePh2)埲/E|Z9s _ /}/s{ ̡%%e^^'UWcN9 S~ 90W9{s#?W0~W9ׇs?}/r qu7?7939ACa .!>BǼrc~~sw y9{  wɹNr!(oYNoZ8'9B$_5yAa uuS~9V~vï5X^йV. 7ȑSܿw2~2A];u CFWT=o *_xڝki8Ӯ/6h}o0W^D/ޤY;yȣx߇ oJg>j{4oqa cO3moC/OM>؃k ҽj_졽7쓥->NA7n"gB8#W@jer Er.1Cx ;wC-=C PD_ M7Fh DLӌn;$w1jU(uzpWrDaӃ"BQ]FUVJrA*'aR,.g /(@#غ̷xR#xC3"8aR p+k"sN=qq|5h_,j-V$'3x$05:%xbӍQfrw^f$W"r0$X\ؓJoē}ʹ|Y8=ۚ9|؆"&nݸ3EK~7x"d`]Vx.^̈́]&]R !K&^OB.; m~K 2#0' MĮfAj?3´Y =O]4`GVbg94Aأ&C;0|F+`a?94Ǟ"0πħ%>1W]e A_e|bOh޳Zo/TsLH+8Mh^^4 "s k#|m)߻f,3ugGw]KoJď'ˆRȻW)^{ #E3dưz< 49^2@-F6AǛ}F^\ )4MnΪRt=yn%()%y+6(مln DS<}"E a'_C ba'R1<zH|k,XgwAi֊_/gwǁ;MzK6o7j[(&\`֋ьW%#tnP/K7"i½oPmJb<% *`>=.X"7>m?'.}N5+I "@*d̴5[Pŗ;wisF)f'NFp)hNxXBߦ `ܘ}oDI-cOx#r:uGWY 965~v0q=Ķr|R4oΝupvVRv ?H朙.99 3/&M@NDqDgPxGmm<^|:y-nEcuݍ2F׼mk kb C/KwJ^Su 7tlcb @J D7#D*]~X^c 0У,&059GE6<}܈xjͺX &*,lp/>cwOp 0tcfw<ם- ɤ{#̅2 !NYxyM~ҵ^F$֓/(ylHbm50X1'(NR%K&t!0 'Ɣ ϰ" sk2%),S]S'>+5 3 .^s ?ӽk xٚջHQ#.fYACWqk @c,ĵ6y9 ] 9l!j1Bi1gY1bRW`0MkA3s LeUTtcBYEL`;X+N*$t&ж?82acTx 1L_i,Y7u!xZu΋{_ El>WNENE<<Sf}')VSL_X__,Q>i*'\%ƕ)ĆSq|7~݉W4XYj(/{xH%H=C ɳqƠk7O(QF{>s7*OРtM5z'14ɋmEg,3lW'J}{l' uE^8%–mJXQ&s)#+Mm7b^)Mjs9Q/D q>tgLp -ͱ=RZ`'l/Z/j|^K*