Imagine rolling into an airport, trudging your way through security and navigating a labyrinth of gift shops before finding your gate, boarding your flight and sinking into your assigned seat. After settling in, your next step may be to whip out your phone and access the free Wi-Fi. Only this time, the signal isn’t a legitimate connection and your personal information has been swiped.
This may have been the case in Australia, where authorities arrested and charged a 42-year-old man in May for allegedly establishing fake free Wi-Fi access points that mimicked legitimate networks to record personal information from victims who mistakenly connected to them. The news came after an investigation was launched in April following an airline’s report of a suspicious Wi-Fi network identified by employees during a domestic flight.
Don’t miss
-
Car insurance premiums in America are through the roof — and only getting worse. But 5 minutes could have you paying as little as $29/month
-
Commercial real estate has beaten the stock market for 25 years — but only the super rich could buy in. Here’s how even ordinary investors can become the landlord of Walmart, Whole Foods or Kroger
-
These 5 magic money moves will boost you up America’s net worth ladder in 2024 — and you can complete each step within minutes. Here’s how
Such activity — when a bad actor sets up an imposter internet connection to gain access to sensitive data — is known as an “evil twin” Wi-Fi attack. It’s not just your email and social media connections that could be at risk. A hacker engaging in this type of activity may also be able to steal sensitive financial data and other information that could be used to steal your identity.
“It’s extremely easy,” Adrianus Warmenhoven, a Nord VPN security adviser, told NBC Bay Area.
Although the idea of getting your information stolen from a Wi-Fi connection is terrifying, you have more control over your identity than you realize. Experts say the best way to protect yourself from an evil twin attack is to know the signs and prevent it before it even happens.
Why evil twin attacks are successful
Police allege the man used a portable wireless device to create evil twin Wi-Fi networks at multiple locations. These attacks commonly occur at places we connect to Wi-Fi, such as coffee shops and airports, because users trust that their devices are safe there. So comfortable are people when visiting these places, they often don’t think twice about connecting to the internet.
That’s where the danger begins. According to NordVPN, an attacker who wants to get your information will set up their own hotspot with a similar or identical name as the authentic access point — thus becoming the “evil twin.” From there, they count on users connecting to the imposter signal.
Once connected, a user’s activity can be monitored and recorded. If you were to connect to a social media account, then check a transaction at the bank, followed by texting a family member, the attacker may be able to see all of that, and now they have several pieces of personally identifiable information about you. This information can be used to break into your financial accounts or be put up for sale on the “dark web.”
Read more: Rich, young Americans are ditching the stormy stock market — here are the alternative assets they’re banking on instead
Safeguarding yourself from an attack
While “evil twin” attacks are becoming more prevalent, there are steps you can take to prevent yourself from becoming a victim. The first thing to do is be aware of your digital surroundings and always double check a network ID matches the one named by the venue. It may also be wise to disable auto-connect for networks or even turn off the Wi-Fi feature on your phone or laptop when you’re not using it.
If you don’t recognize the login process for a network you are used to connecting to, might not be legitimate. Ask an employee to confirm if you suspect anything. A legitimate network won’t ask you to log in using your email or social media accounts to access the internet.
In addition, using different passwords for different websites can help reduce your overall risk of having sensitive information stolen. It’s also a good idea to use multifactor authentication where available.
Should you suspect that you’ve been a victim of an evil twin attack, the first step is to disconnect from the network immediately. Change any affected passwords to help prevent unauthorized access to your personal accounts. It’s also a good idea to monitor your accounts for any suspicious activity afterward, just in case.
What to read next
This article provides information only and should not be construed as advice. It is provided without warranty of any kind.
Source Agencies