Language Selection

English French German Italian Portuguese Spanish

Does Your Wi-Fi Hotspot Have an Evil Twin?

Filed under
Security

Identity thieves are going wireless in their quest to steal your personal info.

You may want to think twice before logging into a public wireless hotspot. Sure, grabbing a few minutes of connectivity is convenient, but identity thieves are discovering that, through "evil twin" attacks, hotspots are a great way to steal unsuspecting users' private information. So how does an evil twin attack work?

Let's say that I'm a hacker. I set up my computer to transmit a signal that turns my PC into an access point, or Wi-Fi hotspot. I'll even give it a legitimate-sounding name, like T-Mobile Hotspot, to fool unsuspecting surfers.

Next, I put my laptop in a backpack and read a newspaper while sipping some java at the local coffee shop. All I have to do is wait for you to connect. (And if I'm looking to steal from you, I'll require you to enter a credit card number to get access, just like T-Mobile does--then I'll have your credit card information.) While you surf the Web, my computer redirects you to Web pages I have created that happen to look like the ones you visit on a daily basis.

In fact, the only difference between the Citibank page you visit every day and the one I have made is that my page is unencrypted. I can log all of the information you input into various Web forms, and when you check your e-mail, I can read it along with you.

Full Story.

More in Tux Machines

OSS: Puppet Acquires Distelli, Mozilla Adds Tracking Protection, Fake List of Open Source Companies, and Open Source Summit

  • Puppet Acquires Distelli, Boosting Its Cloud Automation Offerings
    Puppet, the open source company that markets cloud-native software management tools, has acquired startup Distelli. Based in Seattle, Distelli offers a software as a service platform used by developers to build, test, and deploy code written in any language to any server, including cloud platforms. This is an obvious good match, as both platforms enable developers to manage infrastructure and applications across the entire software delivery process to make app development quicker. "Today, a company's success is predicated on how quickly and successfully it can deliver new experiences to customers through software," Puppet's CEO, Sanjay Mirchandani, said in a statement. "Automation makes world-class application delivery straightforward for every enterprise, not just for companies born in the cloud. Together with Distelli, we are bringing a comprehensive solution for orchestrating and automating the entire software delivery lifecycle, from infrastructure, all the way up through containers."
  • Mozilla Adds Tracking Protection to Firefox for iOS, Focus Gets Multitasking
    Mozilla released on Thursday new updates for its Firefox for iOS and Firefox Focus for Android apps adding new features like tracking protection and multi-tasking, along with various other improvements. Firefox for iOS has been updated today to version 9.0, a release that's available on the App Store for iPhone, iPad, and iPod touch devices running iOS 10.3 or later. It comes with support for Apple's recently launched iOS 11 operating system, as well as tracking protection, which is enabled by default in the private browsing mode to automatically block third-party trackers in an attempt to increase browsing speed.
  • 35 Top Open Source Companies [Ed: Easy to see that this list will be a 'scam' when the company listed in number one is Adobe. It has even listed Black Duck as "Open Source Company". It’s PROPRIETARY and ANTI-FOSS.]
  • Open Source Summit in Los Angeles: Day 1 in 5 Minutes
    Open Source Summit North America in Los Angeles was packed with keynotes, technical sessions, and special presentations, including a conversation with Linux creator Linus Torvalds. In case you couldn't make it, CodePop.com's Gregg Pollack has put together some short videos recapping highlights of the event.

today's howtos

Software: Temps, LabPlot, GNU Parallel, gnURL, Document Liberation Project

  • Temps – A Smart Beautiful Weather App for GNU/Linux
    I’ve written on a couple of weather applications before, including Cumulus and Simple Weather Indicator and today I bring you yet another free and beautiful Linux app with thanks to the open source community. It’s reminiscent of Cumulus weather application and it goes by the name of Temps. Temps is a beautiful cross-platform weather application that lives in the menu bar of any desktop. Being true to the open source spirit, it uses code from several open source projects like Menubar, OpenWeatherMap, Electron, and Chart.js, to mention a few.
  • [LabPlot] Short update on recent UX improvements
    One of the usual data visualization workflows supported by LabPlot involves the import of some external data into the application and the creation of plots.
  • GNU Parallel 20170922 ('Mexico City') released
    GNU Parallel - For people who live life in the parallel lane.
  • gnURL 7.55.1-4 released
    Today gnURL has been released in version 7.55.1-4 as a patch release.
  • Document Liberation Project: New releases
    LibreOffice’s native file format is the fully standardised OpenDocument Format. This is ideal for long-term storage of data, but many of us have to work with other file formats as well, including those generated by proprietary software.

Mesa 17.1.10 Release Candidate

  • Mesa 17.1.10 release candidate
    The candidate for the Mesa 17.1.10 is now available. Currently we have: - 41 queued - 0 nominated (outstanding) - and 5 rejected patches This is the last release for the 17.1 series.
  • Mesa 17.1.10 Is Being Prepped As The Final 17.1 Update
    J.A. Suarez Romero of Igalia is preparing Mesa 17.1.10 as the final point release for the Mesa 17.1 release stream. The release candidate is out today while Romero is planning to issue this final update to Mesa 17.1 by next week Monday, 25 September. Following that, users are encouraged to upgrade to the stable Mesa 17.2 series.