Evil twin phishing

Evil twin phishing

Evil twin is the wireless version of the phishing scam. An attacker fools wireless users into connecting a laptop or mobile phone to a tainted hotspot by posing as a legitimate provider.

Wireless devices link to the Internet via "hotspots" - nearby connection points that they lock on to. But these hotspots can act like an open door to thieves. Anyone with suitable equipment can locate a hotspot and take its place, substituting their own "evil twin".

Method

The attacker uses a bogus base station that latches on to someone using Wi-Fi wireless technology. Victims think their laptops or mobile phones are connected to bona fide wireless Internet connections. Once they connect to the wireless network, the evil twins can access and steal their login information, in addition to confidential information which could potentially lead to identity theft.

Unwitting web users are invited to log into the attacker's server with bogus login prompts, tempting them to give away sensitive information such as usernames and passwords. Often users are unaware they have been duped until well after the incident has occurred.

Users think they have logged on to a wireless hotspot connection when in fact they have been tricked into connecting to the attacker's base station. The hacker jams the connection to the legitimate base station by sending a stronger signal within proximity to the wireless client - thereby turning itself into an 'evil twin.'

Virtual private networks or end to end encryption may be used to protect passwords, E-mail and other sensitive information.

ee also

#Wireless LAN Security

References

* [http://www.cnn.com/2005/TECH/internet/01/20/evil.twins/ CNN.com]
* [http://www.pcworld.com/news/article/0,aid,120054,00.asp PC World]
* [http://fr3dc3rv.blogspot.com/2007/04/evil-twin.html FR3DC3RV Evil Twin Paper]


Wikimedia Foundation. 2010.

Игры ⚽ Нужно сделать НИР?

Look at other dictionaries:

  • Evil twin — Evil twins are antagonists found in many different fictional genres. They are physical copies of protagonists, but with radically inverted moralities. In filmed entertainment, they can have obvious physical differences with the protagonist such… …   Wikipedia

  • Evil twin (wireless networks) — Evil Twin is a term for a rogue Wi Fi access point that appears to be a legitimate one offered on the premises, but actually has been set up by a hacker to eavesdrop on wireless communications among Internet surfers. [ Strange Wi Fi spots may… …   Wikipedia

  • Evil twin (disambiguation) — Evil twin may refer to:* Evil twin, a literary device found in many soap operas and other television series * Evil twin (wireless networks), a method used to facilitate phishing * Evil Twin (film), a 2007 South Korean horror film * , a videogame… …   Wikipedia

  • evil twin — noun a) A duplicate or counterpart of something or someone that acts in a contrary, nefarious, or insidious manner. As a ploy to discredit the reformist politician, the opposing party had hired a lookalike to act as his evil twin and be seen in a …   Wiktionary

  • Piggybacking (internet access) — Piggybacking is a term used to refer to access of a wireless internet connection by bringing one s own computer within the range of another s wireless connection, and using that service without the subscriber s explicit permission or knowledge.… …   Wikipedia

  • List of Internet phenomena — This is a list of phenomena specific to the Internet, such as popular themes and catchphrases, images, viral videos and more. Such fads and sensations grow rapidly on the Internet because its instant communication facilitates word of mouth. In… …   Wikipedia

Share the article and excerpts

Direct link
Do a right-click on the link above
and select “Copy Link”