Episode 2: Honeypots, Evil Twins, and the Perils of Open WIFI

October 29th, 2015. Jordan Bloemen and Scott Francis Winder

More Information

When we discuss “open WIFI” we are talking about those that lack any form of authentication or encryption. These differ from WPA/WEP networks which typically use key based encryption to obfuscate WIFI traffic.

DNS spoofing can be avoided if you hard program your devices to use a globally trusted DNS server. I typically use Google’s public DNS server (8.8.8.8). This will render any attacks that start from spoofed DNS useless. For more information on changing your DNS settings, please look it up for each operating system and device. There is a basic guide here: https://support.hidemyass.com/hc/en-us/articles/202720776-Changing-your-DNS-settings-on-Windows-Mac-Android-iOS-Linux

For more information on man in the middle attacks, please see: http://www.veracode.com/security/man-middle-attack

For more information on evil twins, please see: https://dalewifisec.wordpress.com/2013/05/16/evil-twin-access-point-attack-explained/