Fancy Bear ‘Nearest Neighbor’ Attack Uses Nearby Wi-Fi Network

November 25, 2024 at 01:29PM Russian APT group Fancy Bear employed a novel “Nearest Neighbor” cyber-espionage technique during the Russia-Ukraine war, infiltrating a US organization by compromising nearby Wi-Fi networks. This remote attack underscores the security risks of proximity and emphasizes the need for stronger defenses against Wi-Fi vulnerabilities and enhanced monitoring practices. ### Meeting … Read more

Hackers breach US firm over Wi-Fi from Russia in ‘Nearest Neighbor Attack’

November 22, 2024 at 02:34PM Russian state hackers APT28 breached a U.S. company by executing a “nearest neighbor attack” via its enterprise WiFi, compromising nearby organizations first. Discovered on February 4, 2022, the incident involved credential theft and sophisticated lateral movement within the target network. Enhanced WiFi security is necessary to mitigate such risks. ### … Read more

Researchers Discover Command Injection Flaw in Wi-Fi Alliance’s Test Suite

October 25, 2024 at 10:33AM A vulnerability in the Wi-Fi Test Suite, tracked as CVE-2024-41992, allows unauthenticated local attackers to execute arbitrary code on Arcadyan FMIMG51AX000J routers. Discovered by researcher “fj016,” the flaw could grant full administrative access, jeopardizing network security. Vendors are advised to remove or update the Wi-Fi Test Suite to mitigate risks. … Read more

Public Wi-Fi operator investigating cyberattack at UK’s busiest train stations

September 26, 2024 at 06:36AM Network Rail is investigating a cyberattack displaying Islamophobic messaging on its Wi-Fi services at major UK train stations. All 20 managed stations, including key hubs like London and Manchester, are affected. The British Transport Police are collaborating on the investigation, while experts emphasize the vulnerability of public Wi-Fi networks to … Read more

Apple Patches Major Security Flaws with iOS 18 Refresh

September 16, 2024 at 03:45PM Apple’s iOS 18 refresh addresses at least 33 security vulnerabilities, securing iPhones and iPads from malicious attacks. Fixes encompass core components like accessibility, Bluetooth, Control Center, and Wi-Fi, preventing unauthorized access to sensitive data or device control. Additionally, macOS Sequoia 15 was launched with a significant number of security patches … Read more

Chinese Wi-Fi Router Vendor Draws US Congressional Ire

August 20, 2024 at 05:36PM Two Congressional representatives, Rep. John Moolenaar and Rep. Raja Krishnamoorthi, have called for an investigation into TP-Link Technologies, the leading Wi-Fi router provider in the US. Concerns have been raised about the company’s routers being manufactured in China, potentially making them vulnerable to state-sponsored hacking and compliance with Chinese intelligence … Read more

Apple Geolocation API Exposes Wi-Fi Access Points Worldwide

July 9, 2024 at 12:05PM Wi-Fi hubs can unintentionally expose data due to quirks in Apple’s geolocation system, beyond just the devices connected to them. Certainly! It appears that the meeting discussed the potential data leakage from Wi-Fi hubs themselves, due to specific quirks in Apple’s geolocation system. This issue goes beyond the devices that … Read more

Australian Man Charged for Fake Wi-Fi Scam on Domestic Flights

July 2, 2024 at 12:49AM An Australian man has been charged with creating fake Wi-Fi access points during a domestic flight to steal user data. The suspect impersonated legitimate networks, prompting victims to enter personal information. He faces multiple charges and potentially 23 years in prison if convicted. Authorities advise using reputable VPNs for public … Read more

Australian charged for ‘Evil Twin’ WiFi attack on plane

July 1, 2024 at 02:32PM An Australian man has been charged by Australia’s Federal Police for conducting “evil twin” WiFi attacks on domestic flights and airports in Perth, Melbourne, and Adelaide. The man set up fake WiFi networks to steal people’s email and social media credentials, exposing them to potential data theft and other cybercrimes. … Read more

Police allege ‘evil twin’ of in-flight Wi-Fi used to steal passenger’s credentials

July 1, 2024 at 01:52AM Australian Federal Police charged a man for running fake Wi-Fi networks on flights, harvesting credentials for email and social media. The man was found with devices creating Wi-Fi hotspots, including similar to in-flight access networks. The charges allege unauthorized access and possession of data with intent to commit a serious … Read more