Wireless Vulnerabilities & Exploits
Wireless Vulnerabilities & Exploits
We are very excited to announce that the SANS Institute has become an official sponsor of the WVE project. Many of our readers know the SANS Institute as a well-respected, global authority for information security training, certification & research. SANS is widely known for their significant contributions to the information security community through research publications and the Internet Storm Center.
Like WVE, the SANS Institute is dedicated to helping the community with valuable information resources, and we are happy to have them sponsor us. Welcome, SANS Institute!
Security analyst Raul Siles has developed a paper on the use of wireless honeypot (dubbed "honeyspot") technology to study the skills and capabilities of wireless attackers. Describing the architecture and deployment of a wireless honeypot, Siles' paper is a valuable resource for enhancing the security of wireless networks, either as an attacker skillset and technique analysis tool, or as a deterrent to ward attackers away from other networks (e.g. "Pay no attention to the man behind the curtain"). More information is available on Raul's blog post or you can grab the paper from the Spanish Honeypot website. Thanks Raul!
Following his RSA 2008 presentation titled "High Speed Risks in 802.11n Networks", WVE editor Joshua Wright has posted his slides. New WVE entries pertaining to these issues have also been created. Comments are most welcome. Thanks!
New entries highlighting vulnerabilities in IEEE 802.11n networks are being added to the database. This is in coordination with WVE editor Joshua Wright's presentation tomorrow at the RSA 2008 conference in San Francisco titled "High Speed Risks in 802.11n Networks". Presentations slides will be posted on Josh's website, and linked here on the News page. If you are at the RSA conference, be sure to catch Josh's presentation at 8:00am on Thursday (WIR-301).
Two WVE editors, Mike Kershaw and Joshua Wright, have been selected as speakers at the first annual SHARKFEST conference. This Wireshark developer and user event is 3 days of training and discussions on network analysis, troubleshooting, security, Wireshark development, communications dissection and more.
Mike Kershaw is giving a session titled "WLAN Analysis & Security", focusing on security analysis with Wireshark. Joshua Wright is giving a session titled "Leveraging Wireshark for Wireless Network Analysis", focusing on WLAN operational troubleshooting and debugging.
SHARKFEST.08 is on March 31 - April 2 at Foothill College in Los Altos Hills, CA. More information including an agenda for the conference is available on the SHARKFEST website.
In 2006, the Bluetooth SIG announced that over 1 billion Bluetooth adapters had shipped. Many organizations overlook the threat of Bluetooth technology in their organizations, even though many types of Bluetooth devices can expose organizations to attack.
The paper "Dispelling Common Bluetooth Misconceptions" examines several threats commonly overlooked when working with Bluetooth technology. Comments are most welcome.
WVE editor Joshua Wright has posted a video on YouTube, describing an attack against a Bluetooth headset. Using a standard Linux workstation, he shows how headset devices can be exploited as audio bugs from significant distances, recording and inject arbitrary audio through the headset device. You can check out the clip at http://www.youtube.com/watch?v=1c-jzYAH2gw. Please direct comments or questions to Josh directly.
WVE Editor Joshua Wright has published a paper to help organizations understand the risks associated with modern WLAN deployments. While many organizations have turned to strong encryption mechanisms such as TKIP or CCMP, and strong authentication mehchanisms such as PEAP and EAP/TLS, it does not satisfy several remaining threats in wireless security. "Five Wireless Threats You May Not Know" is available on the author's website.
WVE editor Devin Akin has created a video showing how to crack a LEAP protected network by utilizing ASLEAP2 under Windows. In the video Devin shows how to capture the authentication exchange, convert it to Pcap format, and then how to use ASLEAP. Check out the preview.
In the latest installment of our wireless security column at NetworkWorld , WVE editor Andrew Lockhart, responds to a reader's question about how to protect a RADIUS server.
