Vulnerability Alerts
SANS
 
Microsoft
 
CERT/CC
 
 
 
Latest Comments
"Thank you "
on Search engine promises completely private surfing
by Dr. Holub | Jul 4, 2009 11:17 AM
 
"Agree that wireless hotspots are an easy way for hackers to gather information from connected ..."
on New devices make hotspots a hacker's paradise
by Patrick Hooper | Jul 3, 2009 4:06 AM
 
"Katarzyna what has this got to do with Symantec?? "
on Mobile phone directory service faces consumer uproar
by PaulC | Jul 2, 2009 12:55 PM
 
"Hi Nadim, I'm the chief marketing officer at Ounce Labs, and I disagree with your statement. ..."
on Ounce Labs 5.0
by Jennifer Sullivan | Jun 30, 2009 11:56 PM
 
"noobs!"
on Australia shows poor resistance to phishing
by webappsec | Jun 30, 2009 4:53 PM
Wi-fi Security

Black Hat Conf: New tools found for wi-fi hacking

  • Email a Friend
  • Print Page
Black Hat Conf: New tools found for wi-fi hacking
Related Articles
By Fiona Raisbeck
Aug 6, 2007 10:02 AM | 1 Comment
Tags: Black | Hat | Conf | New | tools | found | for | wi-fi | hacking
New tools have been discovered that allow a hacker to steal confidential information from wi-fi hotspots, security researchers have warned.
Members of Errata Security demonstrated the technology at the Black Hat hacker conference in Las Vegas. The devices reportedly allow an attacker to interactively monitor traffic flowing to and from public wi-fi hotspots through laptop computers, PDAs and smartphones. These tools make it much easier for a cyber criminal to steal banking account details, according to Robert Graham of Errata Security.

A malicious user can also use this technology to pinch unencrypted cookies used across wi-fi web sessions, which permits the hacker to take control of the user’s online session.

At the show, officials demonstrated the hijacking of a Google mail session, but said the hacker methodology could also be extended to other popular social networking sites such as Facebook and MySpace.

However, the tools created by Graham and named “Hamster” and “Ferret”, would not allow the hacker to change the user’s password. What’s more, people using encrypted email services, such as GMail, would be protected against such an attack.

“The evolution of wi-fi hacking is quite frightening,” said Geoff Sweeney, chief technology officer at Tier-3. “Public wi-fi users need to be far more aware that their online sessions are highly insecure. Laptop users need to employ every available security system available to them, which means turning to technologies such as SSL, two-factor authentication and behavioural analysis software as standard procedure. Only by using these security technologies can users be reasonably sure that their online sessions are not being intercepted.”

The Black Hat conference is held every year in the Nevada city, and is an event for security professionals around the world to come together and swap information about online threats and hacking.

 
Ads by Google
Thoughts on this article? Add a comment below.
Comments: 1
quit good
SC Magazine - comments icon Posted by jeyarajDec 21, 2008 2:11 AM
Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 
Exclusive Data Centre - Sponsored Content by Microsoft
 
Mobile Whitepapers
 
Popular Tags
atm black cash criminals dark hacker hat homeland house juniper machine malware potter researcher security seo software tangent white wifi