In this generation, there’s nothing more exciting than being connected to a free WIFI. With free WIFI, you can do almost anything that strains your data plan. Most people will use free WIFI even to check their bank accounts and other sensitive information. Free WIFI is mostly found in public places which are commonly referred to as public WIFI hotspots. These places include cafes and restaurants, airports, public halls and even in waiting areas.
公共WIFI很好,但大多數時候它是不安全的,因為每個人都可以連接到它。這意味著即使是有惡意的人也可以連接到它,從而對毫無戒心的使用者造成嚴重破壞。
只需簡單的工具,惡意人員就可以從公共WIFI訪問他們想要的任何資訊。以下是這些工具的工作方式;
- 中間人攻擊 (MITM) – 這是惡意個人在連接到公共WIFI時進行的第一次攻擊。在MITM中,個人會在您的網路流量到達目的地之前攔截它。
- Spoofing – This is a technique of masquerading or imitating a legitimate entity. For instance, after a MITM attack, a malicious person can impersonate the receiver and send messages back to you. Malicious people can even launch a complicated attack; website spoofing. Unsuspecting users will log into/access the website thinking it’s the legitimate one.
- Snooping – Snooping is technically referred to as sniffing. Using this method, malicious people capture your internet traffic in terms of packets and analyze it.
- 竊聽– 這基本上是在使用者不知情的情況下監聽某個公共WIFI中發生的事情,在窺探的説明下,惡意個人可以訪問您的消息和對話。
Using the above techniques, malicious people can access everything they want in a network. Here what the techniques can uncover in an unsecured public WIFI;
1. IP 位址和 MAC 位址
MAC address is a unique physical address that is used to identify devices on a network. An IP address, on the other hand, is also a unique address that is used to identify a device and also enable communication via the network. Unlike the MAC address, an IP address is not physical. With these two addresses, a malicious person can impersonate you and perform other attacks which will, in turn, seem to come from your device.
2. 登錄憑據
With the techniques above, malicious persons can analyze authentication packets which will in turn show login credentials. They might include; FTP logins, email accounts and passwords, and so on. This information can then be used in other hijacking attacks.
3. 發送/接收的檔
Since a malicious person can intercept your traffic, he/she can see what you have been sending and receiving. He/she can further access those files and maybe alter the information or even worse delete them. If they are sensitive, they can be used to blackmail you.
4. 網站
捕獲的數據包可以即時顯示您正在訪問的內容。
連接到公共 WIFI 時如何確保安全
使用虛擬專用網路
This is the ultimate tool that can help you avoid WIFI based threats and attacks. A reputable VPN provides security by encrypting all your internet traffic. This means that your data traffic will be scrambled and even if it’s intercepted, it won’t be helpful to the malicious person. A VPN also masks your real IP address as it assigns you anew virtual address.
In addition to security, a VPN can help you unblock and access restricted content in that particular website. It’s a win-win for you.
