Authentium Warns Against Trusting ''Free'' Wireless Networks.WEST PALM BEACH, Fla. -- Public wireless access points, such as those found in airports and coffee houses, may be imposters; recent tests by Authentium at a major airport showed up to 90% of hotspots could be hosts to man-in-the-middle attacks See replay attack. and identity theft Authentium, the leading developer of security software-as-a-service technologies, today issued a warning against trusting free wireless access points located in airports and other public places. The company said that public wireless networks are ripe for exploitation by hackers who may set up fake "free" WiFi hotspots in public places that could potentially be used to steal sensitive data, such as online banking passwords or personal information. In a recent test at Chicago's O'Hare airport, the most-trafficked airport in the U.S., Authentium engineers discovered that more than 90% of the wireless networks available within the passenger terminals were actually ad-hoc (i.e. computer to computer) connections - and more than 80% of these devices were advertising "free" WiFi access. On the day of testing, only one in ten of the advertised "free" wireless access points connected with O'Hare's official wireless access hub. Many of the suspect devices registered as access points also displayed fake or misleading MAC addresses. "Windows XP The previous client version of Windows. XP was a major upgrade to the client version of Windows 2000 with numerous changes to the user interface. XP improved support for gaming, digital photography, instant messaging, wireless networking and sharing connections to the Internet. automatically prompts the user to accept or decline connections to available wireless networks. Naturally, most users will choose to connect to the 'Free WiFi' access point, which may in fact be a quick path to fraud," said Ray Dickenson, Authentium's senior vice president of products. "To make matters worse, the SSID's (network names) of wireless networks you've joined before are saved on your system; your PC will automatically log on to any network with a saved name. It's clear that WiFi environments in public places are increasingly vulnerable to exploitation by criminals and their malicious software tools. This vulnerability extends even to users who are not connecting to the networks but are simply using their laptops in the area," he added. Users who connect to these "free" networks are also at greater risk of experiencing a "channeling" attack. "Channeling" is a common practice used by hackers and identity thieves to conduct man-in-the-middle attacks, with the objective of stealing user names, passwords, and other sensitive data transmitted by the user. The practice is disturbingly simple to carry out: By setting up an unauthorized access point in an airport lounge An airport lounge is a lounge owned by a particular airline (or jointly operated by several carriers). Many offer private meeting rooms, phone, fax, wireless and internet access and other business services, along with provisions to enhance comfort such as free drinks and snacks. , hackers can easily trap passwords and other information without the user's knowledge. Authentium's Vice President of Marketing, Corey O'Donnell, recently demonstrated "channeling" attacks to banking security technology experts at the Xtalks Forum on Online Banking Security, held on July 28. Authentium's VirtualATM solution was also demonstrated at the event. Authentium VirtualATM is designed to provide secure online transactions even from computers and networks that have been compromised by Trojans or man-in-the-middle attacks. "This vulnerability is ripe for exploitation by hackers and other criminals," said O'Donnell. "With a large number of Windows XP devices configured con·fig·ure tr.v. con·fig·ured, con·fig·ur·ing, con·fig·ures To design, arrange, set up, or shape with a view to specific applications or uses: to connect automatically to ad-hoc networks, it is possible that a purpose-built 'WiFi worm' could be used by criminals to infect infect /in·fect/ (in-fekt´) 1. to invade and produce infection in. 2. to transmit a pathogen or disease to. in·fect v. 1. laptops as they pass through highly-trafficked WiFi hotspots, such as airports. This trend will undoubtedly raise concerns among security administrators, as it is highly likely, given the large percentage of non-updated computers, that these road warriors
The Road Warriors were a professional wrestling tag team famously comprised of Michael "Hawk" Hegstrand and Joseph "Animal" Laurinaitis, though other members will bring these infections back to the office with them, or infect other wireless users in their travels." "The public needs to be aware of this threat," continued O'Donnell. "By setting up open access points, criminals get you to step willingly onto their turf, putting your sensitive data and everyone you connect to at risk." Authentium offers some basic tips for protecting yourself in public WiFi environments. All Users: 1. Shut off your wireless card if you're not planning to connect to the Web or another machine. It will protect you from intrusion and save your battery life. 2. Before connecting to a network, look around and locate a sign that advertises the network to which you are connecting. Verify that the network name (SSID (Service Set IDentifier) The name assigned to a wireless Wi-Fi network. All devices must use this same, case-sensitive name to communicate, which is a text string up to 32 bytes long. ) is a legitimate service. 3. Beware of the information you share in public locations. Even seemingly innocuous in·noc·u·ous adj. Having no adverse effect; harmless. innocuous (i·näˈ·kyōō· logins to Web-mail accounts could give hackers access to get into your more important data, since most people utilize the same password with a few variants for almost all online activities. 4. Utilize a VPN (Virtual Private Network) A private network that is configured within a public network (a carrier's network or the Internet) in order to take advantage of the economies of scale and management facilities of large networks. whenever possible to encrypt See encryption. your data, and stronger tools if you need to conduct secure transactions. 5. Run a comprehensive security suite and keep it up to date to prevent spyware Software that sends information about your Web surfing habits to its Web site. Often quickly installed in your computer in combination with a free download you selected from the Web, spyware transmits information in the background as you move around the Web. and viruses. 6. Be aware of your surroundings, people looking over your shoulder and the possibility that everything you do could be watched. Enjoy the freedom and convenience of WiFi in public, but be cautious. 7. Turn off shared folders. If you join a malicious network, a hacker A person who writes programs in assembly language or in system-level languages, such as C. The term often refers to any programmer, but its true meaning is someone with a strong technical background who is "hacking away" at the bits and bytes. could easily load a malicious spyware agent to follow you even after you leave the public location. Windows Users: 1. In the Advanced settings of Wireless Network Connection properties ("Advanced" button on "Wireless Networks" tab), choose "Access Point (infrastructure) networks only." The default is "Any available network" and this is not safe. 2. Turn off "Automatic Connection" to preferred networks in the Wireless Network Connection properties so your network reads "On Demand." This will prevent your computer connecting to unsafe networks that have the same name as your home or office network. Mac Users: 1. In Network Preferences, choose "By Default," join "Preferred Networks" and edit your preferred network SSID's to include only trusted sources. 2. Click "Options," and ensure "Ask before joining an open network" is selected. Check the "Require Administrator Password to change networks" box, and deselect deselect Verb 1. computing to cancel (a highlighted selection of data) on a computer screen 2. Brit politics (of a constituency organization) to refuse to select (an MP) for re-election the option to automatically add new networks to the preferred list. About Authentium Based in West Palm Beach, Florida West Palm Beach, also known as West Palm, is the most populous city in Palm Beach County, Florida, USA. The city is also the oldest incorporated municipality in South Florida. According to the University of Florida's 2006 estimates, the city had a population of 107,617. , Authentium develops application defense, data interception and data analysis technologies for inclusion in its flagship Extensible Services Platform (ESP (1) (Enhanced Service Provider) An organization that adds value to basic telephone service by offering such features as call-forwarding, call-detailing and protocol conversion. ). Authentium is the leading licensor of security software development toolkits to software-as-a-service vendors, ISPs, publishers, and security appliance Security appliances protect computer networks from unwanted data traffic, intruders, email spam, enforce policies, and may also be used to create and manage VPNs. There are a number of types of security appliances. manufacturers, and is one of the fastest-growing companies in the security software industry. Authentium provides service to millions of consumers and other end users via consumer and enterprise-class ISPs, and other service-based resellers, worldwide. For more information about Authentium, visit www.authentium.com. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion