This is a new one. I never thought of placing a wireless access point near another commercially-available one and giving it the same name. This one's pretty tricky.
When the unsuspecting user (a clueless wealthy person in many cases) logs on to the fake AP, the attacker goes to work, undetected. The victim drinks his coffee and checks his stock portfolio, assuming that everything is safe.
Education is a big thing. Equally important is the energy level needed for the user to care about whether the connection is secure. Many people just don't know how to be safe, and when told don't take the time to follow directions. This must be taught or we'll see many more stories like this for years and years. Until they learn.
read more | digg story
No comments:
Post a Comment