Hacker Read

dschiptsov · 2015-12-07 13:04:30

As if public Wi-Fi has been somehow related to the attack or its causes.

jacquesm | karma 227883 | avg karma 3.76 · | 2015-12-07 12:21:41+00:00

That's logical since the known attackers did not use public Wi-Fi nor Tor as far as we know today but all kinds of plain text channels. /s

crazygringo | karma 69969 | avg karma 7.48 · | 2021-03-11 01:57:57+00:00

Do you have evidence for that though?

I've heard that repeated but never seen anyone actually test it and it would be shocking if true.

It seems more likely that in these cases, a family member or friend connected to the WiFi instead, without the owner being aware.

And if it were actually true and verifiable then surely journalists would have written articles on it by now.

reply

aosmith | karma 415 | avg karma 1.15 · | 2024-02-21 17:03:17

That's exactly what's happening. This is not a wireless attack, it's a physical access problem.

josu | karma 3093 | avg karma 3.21 · | 2017-02-14 13:28:05

As far as I understood, this attack vector has nothing to do with using public wifi.

mason240 | karma 2247 | avg karma 2.29 · | 2016-08-26 14:14:25+00:00

I had a more cynical thought: maybe events like this will trigger security-state politicians to require backdoor access put into all wifi routers (which are then open for NSA/FBI/ect).

computerfriend | karma 1334 | avg karma 2.54 · | 2023-04-12 11:46:04

The analogous attack would be, exploiting a bug in the network card or wpa_supplicant. The latter has happened in an airport before.

Esau | karma 1247 | avg karma 3.26 · | 2016-05-27 19:51:47+00:00

If it is, then it should be a crime to access unprotected wifi.

rootusrootus | karma 23619 | avg karma 2.53 · | 2020-09-29 16:01:15+00:00

I don't. There aren't any open wifi networks anywhere near my home, though. I assume if it did that someone would have noticed by now. That's a naive assumption, but given how many people actually look for such behavior, it's not entirely out of the realm of possibility.

dm319 | karma 2355 | avg karma 2.68 · | 2021-05-23 09:30:51

It's not surprising that people are suspected based on their IP address - most of the criminals involved in these kinds of crimes are unlikely to be tech-savvy enough to gain access to someone else's wifi router.

The problem with suspicion is that collateral damage to those who are innocent, but I don't think the answer is to not investigate.

reply

Nextgrid | karma 26661 | avg karma 2.96 · | 2021-05-23 10:08:16

I would not expect this to be a local attack via wifi. Internet is so cheap/free nowadays, why would you go through the trouble to crack someone’s wifi instead of using a public one + VPN or Tor?

I believe this was a remote attack. Either on their computers, phones or router. Consumer-grade network equipment is notoriously insecure and Vodafone has absolutely zero expertise let alone incentive to do anything about it - they just buy these routers wholesale from China for a couple bucks a piece and call it a day.

reply

the_mitsuhiko | karma 13985 | avg karma 3.97 · | 2015-04-30 09:47:26

In case someone reads the cached version, I added a note about my point about Wifi after it was brought up that the attacker could be the Wifi provider itself so refresh the page.

scns | karma 2383 | avg karma 1.28 · | 2022-04-15 04:13:34

They have been caught trying to connect to unsecured WiFi before.

jghn | karma 4899 | avg karma 2.43 · | 2020-11-24 05:09:36+00:00

I believe they’re suggesting there is a public WiFi network in range of their home.

Where I live I can see a few dozen networks active. At any one time at least a few are public.

reply

munk-a | karma 15496 | avg karma 2.93 · | 2019-08-07 18:26:33+00:00

Yea, this ^. This attack approach is interesting but any company that's serious about security needs to realize that anything opened up on wifi is a big hole - this used to be more amusingly exploited by war-driving, just driving around a neighborhood looking for someone with an open network that spills out into the street so you could download the latest episode of friends.

I don't work in this sort of security and it seems terrifying, the social engineering side is especially crazy.

reply

tlrobinson | karma 30498 | avg karma 4.18 · | 2019-04-11 19:25:23+00:00

That's not always a safe assumption, e.x. public WiFi.

rishabhsagar | karma 185 | avg karma 4.3 · | 2018-01-04 15:19:16+00:00

Some buildings (hostels and shared accomodations) have shared internet (secured with WPA2). This type of attack might be particularly profitable in such situations.

pasbesoin | karma 6001 | avg karma 1.37 · | 2013-04-08 20:11:50+00:00

Caveat: I haven't read the article linked in the GP, yet. (I will.) But the comments here immediately elicit this thought:

How many users have a laptop that they are connecting to one or another undefined (to them) form of "public" wifi? (And/or to someone else's internal network that may be compromised.)

reply

Scoundreller | karma 16473 | avg karma 1.92 · | 2023-10-01 00:26:14

> got hacked over the "free wifi" provided in the HQ

elaborate?

reply

AmericanChopper | karma 2580 | avg karma 0.76 · | 2018-09-03 02:41:50+00:00

How do you know it wasn't a nearby neighbour piggybacking on your wifi?