WiFi Insecurity2013
•
1 j'aime•499 vues
Brief presentation on wifi security risk in 2013.
Recommandé
Recommandé
Contenu connexe
Tendances
Tendances (20)
Similaire à WiFi Insecurity2013
Similaire à WiFi Insecurity2013 (20)
Plus de Kurt Baumgartner
Dernier
Dernier (20)
WiFi Insecurity2013
- 1. Wifi Insecurity 2013 Risks and Usage Kurt Baumgartner @k_sec Principal Security Researcher Global Research and Analysis Team
- 2. Wifi Insecurity 2013 Usage and Risks Credit: wigle.net , 2013.08.29 • WiFi • Absolutely ubiquitous • Demonstrably insecure
- 3. Wifi Availability Who cares? 15%-20% WiFi is “unprotected” Credit: wigle.net , 2013.08.29
- 4. Wifi Availability Does WPA2 really matter? Session hijacking, complete compromise • • Banking / Retail cc Credit: www.immunityinc.com/images/silica/new_wifimonitor_edited.png
- 5. Wifi Attacker’s Toolset 2013 Getting in – is anything new? • Evil Twin == ARPSpoof, DHCP spoofing • Aircrack-ng handshake collector, WPS PIN defaults and Reaver brute forcing • Cloud based cracking, ocl-Hashcat-plus • 55 is the new 15! • Performance improvements by orders of magnitude • Certificate forging, SSLStrip, HTML Injection and Sidejacking • Cookie theft and replay • System Compromise and DNS Hijacking
- 6. Connecting to Public Wifi Confident connections • VPN (and/or SSH) • Pay attention to your browser!
- 7. Connecting to Public Wifi Confident connections
- 8. Connecting to Public Wifi Confident connections
- 10. Thank You Kurt Baumgartner, @k_sec Principal Security Researcher Global Research and Analysis Team