What is meant by fake WIFI cyber-attack?
“Man in the middle” is one of the techniques used by cybercriminals to obtain confidential information, even from people around them, through fake WIFI networks.
Whether it is for business or leisure, there are many occasions when we travel within the same country or abroad. This means that we often make the mistake of using all kinds of free public WIFI networks available in hotels, restaurants, libraries, beaches and swimming pools, gyms, gas stations, airports or train stations to access email, social networks, make video calls or send messages. For this reason we cannot trust any WIFI, since even if they are called the same as the official WIFI of the establishment, some may be fake.
For example, if in a McDonald’s we detect more than one WIFI and among them one with free access without password, it could be the one created by a cybercriminal. Once the nearby users are connected to his fake network, he could almost instantly access all communications and information transmitted or consulted on those mobiles, tablets and other computers. For which he would only need an antenna similar to that of the router connected to his laptop, a computer program that allows to track and record the results, and some patience.
How can we avoid this?
- Use an unknown WIFI only if strictly necessary.The dependence on new communication technologies leads us to make mistakes that can seriously damage the information contained in our devices (mobile, tablet, computer, etc.).
- Avoid the use of completely open and free networks: if the Wi-Fi connection is free and also does not ask us for any type of password or association of an email or mobile phone number to access, it is in itself a sign that this network does not use adequate minimum security measures.
- Read carefully the notice of General Conditions of Use or Privacy Policy: a public Wi-Fi correctly installed and covered by the best protection measures, will have legal texts that appear on the screen prior to connection, related to the proper use of that network and associated security warnings.
- Have firewall and antivirus installed in our devices: something that is common to see on corporate devices, it is very rare to have it on our personal devices; have installed a firewall and an antivirus, which are applications for blocking possible intrusions and protection against all types of viruses that may affect our devices and the information (photos, contacts, passwords, other applications, etc.) contained therein.
IMPORTANT NOTE: If you think you may have been a victim of this cyberattack by connecting to a fake WIFI, in the work environment report it to the IT Dept, CISO or DPO and in the personal environment report it to the police authority.