Search By Topic:

Popular Topics:



Thought Leadership | May 30th, 2011

How Cyberpunks Hack Wifi Hotspots

Kent Lawson

Like most areas of technology, hacking techniques are pretty simple at a conceptual level.

Yet it is the details -- those obscure Internet protocols and arcane terminology -- that make hacking seem difficult.

There are basically just two ways hacking is done in public wifi hotspots.

The first is passive sniffing. Remember that wifi signals are just radio waves. Like any radio waves, all you need is a receiver, tuned to the right frequency, to listen into all the Internet communications at a wifi hotspot.

Of course, every laptop has a wifi receiver built-in -- that is how your laptop communicates. In fact, your laptop already hears all the traffic going on. But, in most instances, it simply ignores all the data that is not intended for your computer.

However, virtually every laptop can be put into something called “promiscuous mode,” which means that it captures all the traffic, not just yours. The real "tech geeks" can do this with settings, but most people just download some software off the Internet to do it.

Thus, any ordinary laptop can be turned into a hacking device. Once in promiscuous mode, all the Internet communications at that hotspot are easily displayed, scanned (e.g., for Social Security numbers or credit cards), or stored for further analysis.

MITM and ARP Attacks

The other way of hacking wifi is called a man-in-the-middle (MITM) attack, and again, the basic concept is simple. They simply set up a false network connection. They get you to connect to it, instead of the safe connection you were looking for. Then, all your Internet traffic will go through their device, before they pass it on to the rest of the Internet.

There are a lot of different ways to set up a MITM attack.

Some are easy to spot (maybe it’s called “Starbacks Network” instead of Starbucks). But most are quite well-hidden and cannot be detected by individuals. Some can even mimic “secure” sites like your bank's website or your favorite online retailer.

Actually, MITM can be used on most networks, even those that you plug into with a wire.

Something called ARP poisoning is one of the other popular techniques, and this visual shows you exactly how easy it is for a hacker to intercept your online communications.

Experts Urge Consumers to Use VPNs

Security experts, and even most wifi hotspot Terms and Conditions, will tell you that there is only one way to protect your Internet communications, and that is by using a Virtual Private Network (VPN).

By using a VPN, all of your communication is encrypted between your laptop and the VPN’s remote server.

We applaud The New York Times for noting recently that our PRIVATE WiFi™ software is a "VPN for the masses," as our software easily protects you from passive sniffing and MITM attacks. If the hacker tries to listen in to your communication, all they will see is gibberish.

Associated Topics:

Associated Topics:


Related Posts

The Three Legs of Protection: Antivirus Software, Firewalls, and VPNs

Thought Leadership
Kent Lawson | Apr 15th, 2015

We've all heard about antivirus software and firewalls. But we probably don’t know as much about the third leg of computer protection: a VPN, or virtual private network. In his latest article, company CEO Kent Lawson says we do this at our peril, because the damage we can suffer from not using a VPN may far outweigh the risks of the other two combined. After the large-scale hack attacks over the past few years, VPNs are now earning their spot as the third security leg that is vital to every-day computer security. Read More

New Hotel WiFi Vulnerability

Thought Leadership
Alok Kapur | Apr 9th, 2015

Earlier this year, the FTC declared a critical announcement for travelers: hotel WiFi is dangerous. Many people assume that because they are paying for it the network must be safe, but that is a dangerous assumption. Hotel WiFi networks are completely insecure; the bad news is that a new exposure in hotel WiFi has just been found. Read more to find out how you can keep yourself protected. Read More

Cyber Security Training Just As Important at C-Level

Thought Leadership
Eva Velasquez | Mar 24th, 2015

The need for better online safety training to prevent data breaches is a hot topic right now. Coupled with stronger computer and network policies, companies want to prevent the hacking events that leave businesses susceptible to a data breach. While it’s no secret that employees in both the private sector and government service can unintentionally expose organizations to hackers, what is surprising is a report by Wombat Security that shows that 33% of CEOs fell for phishing attacks that led to network access. Why are they falling for this kind of internet activity? Read More

E-filing: The Fastest and Safest Way to File Taxes?

Thought Leadership
Eva Velasquez | Mar 9th, 2015

E-filing your annual return to the IRS offers speed and convenience and when coupled with industry-approved software that can plug in the values for you, a lot of the headaches traditionally associated with doing your taxes are eliminated. However, there are some potential dangers that you should be aware of, such as insecure public WiFi networks and online tax fraud. Read More


Thank you for subscribing to our newsletters

Your email has been added to our system. You will be e-mailed shortly with a request to confirm your membership. Please make sure to click the link in that message to confirm your subscription.