"Lei feng's network as" the writer Liu Ming, millet MIUI Security Center Product Manager, Twitter: @ Liu Ming. This article has been obtained the authorization of the author and may not be reproduced without permission.
"Waiter, which is the WiFi in your House? A password? "
Now every time I go to a new restaurant, a bar, the first sentence is often not a la carte, but the waiter WiFi password.
The WiFi is really safe?
Do not know if you have this kind of experience, traveling to a city, connected to the hotel WiFi network on results found QQ stolen the next day.
Free WiFi is also mentioned in this year's 315 evening, the hosts through from the bait, the audience even offer free WiFi. After a while, all with what handsets system, self portrait photos, email accounts, passwords were stolen and projected on the big screen.
The curtain, the stage is followed by a "dark room", which are played by safety engineers "hackers", in analog to steal users ' private data.
The darkened room at the party, around us really exist? They are using WiFi, spying on us? It has free WiFi present said that in a previous incarnation.
Origin of the free WiFi
In July 2004, the United States Philadelphia first proposed the construction of wireless broadband networks based on WLAN standards, also called "wireless Philadelphia". Target is within the city limits and offers free outdoor WiFi Internet service. Wireless city construction began sweeping the globe, thousands of city under construction or planning wireless cities, to meet the needs of public access, public safety and public service.
Now, although it did not reach the level of Radio City, but free WiFi has become a standard of the restaurants, hotels, businesses to attract customers. As mobile Internet portal, is also the Internet service shall be competing for entrance.
Where there is interest, there's some scam, and the free WiFi hack get benefits in dispute.
Why insecurity of public WiFi?
315 party said, a half effort, hacker, hijack your phone information, exclude individual voyeuristic fetish, most of them are for profit. Hackers saw benefits of public WiFi?
1, steal account passwords
Fishing on the once connected WiFi, hackers can get all the account password for the application you are using, including micro-credit, QQ, Taobao, mailbox. Because a lot of people in different account password is the same as on the site, once a hacker intercepts that information, the login user can access all Web sites, including banking sites. OtterBox iPhone 4 Case
2, access to user privacy
Except for account passwords, use the data being uploaded will be intercepted, such as photographs, shopping information, chat, or even address book, liar according to them can pretend to be you, and then to lie to your friends and relatives, resulting in larger losses.
Free WiFi is how to be compromised by a hacker?
Now most of the WiFi fishing, are used in three ways:
(1) DNS hijacking
DNS (Domain Name System) is a distributed database to convert domain names to IP addresses.
IP address is a string of meaningless numbers, is a protocol designed for computers connected. Domain name closer to natural language, is easy to remember and communicate for the communication between people. To establish a mapping between the domain name and IP address, DNS is.
Simply put, when you're in the browser's address bar enter www.Baidu.com and when the Enter key is pressed, DNS will automatically convert the www.Baidu.com access to IP addresses such as http://220.181.111.188/.
DNS hijacking is forced to modify the mapping relations, will visit the site to domain name's IP address to the hacker's own IP address and fake Web site you want to access. Users online, even if the domain name is correct, also open to hackers carefully forged fake website, and your account password, all were sent to cheat. In addition, hackers may also be by way of 302 redirect, to achieve the same results.
It's like, Beijing needs all of the Shun Feng express through SF distribution center in Beijing to transit, distribution center and a gang of robbers hijacked, forced conversion of all express shipping address to robbers. Then, all you express are owned by robbers shopping all over again.
(2) the ARP attacks
Even if DNS has not been hijacked domain names successfully converted to an IP address (a series of virtual numbers) and then still need to be converted from an IP address on the server's MAC address (a real computer). This user message to be received and processed by the server.
ARP attack, was forced to modify LAN this mapping, all IP address corresponds to the MAC address, broadcast to hackers on the MAC address of your own computer, and fake Web sites to visit. Similarly, users go online, even if the domain name and the corresponding IP address is correct, because the last sent to the MAC address is wrong, only open the hackers carefully forged fake websites. OtterBox iPhone 4 Case
Also to express, for example, although there are no robbers hijacked SF distribution center, but the bad guys masquerading as a recipient of x, give customer service a call saying "I am x, mailing address changed! "。 So while also sent to SF distribution center, but on the way was converted into bad addresses, so express courier to the bad guys.
(3) false WiFi
Many people love to go to Starbucks to get wireless, sometimes it will find that there are two "Starbucks" WiFi, then be careful, most likely one of the hackers set up their own WiFi. When you connect to the WiFi, or normal Internet access, but all data will be a hacker's server to the Internet, hackers can easily view your account password.
How to prevent fishing WiFi1. Stop rubbing network behavior
Does not require authentication, no password is required for public WiFi risk coefficient is very high, may be behind the fishing traps. And now helps users get NET APP more aside moral questions aside, once users get application automatically connected WiFi fishing, resulting in property damage, it would lose.
2. use of data networks
Under absolutely safe and WiFi in uncertainty, when important operations such as online shopping, it is best to turn off WiFi, through data networks to ensure security. Operator's data package is already very cheap right now, if you all cannot be achieved with a data network, at least in important behaviors, such as online payment, financial management and mailbox operations such as switching to data networks.
3. alert name WiFi
Found more than one with the same name when WiFi, to be extra vigilant. Many hackers in the Starbucks, McDonald's, we love to get near the net, set up their own a WiFi with the same name, you may accidentally connect to WiFi on hacker hypothesis.
4. use professional software test network environment
Mobile phone security software. Network detection mobile security software on the market function, can effectively detect problems such as DNS hijacking and ARP attacks.
5. turn off automatic connection WiFi function
When a name like WiFi is found, many phones have automatic connection function, suggest that we turn this feature off so as not to be exploited by hackers, cell phones automatically connect to unsecured WiFi.
315 evening in a dark room, around us really exists. It's worth your attention.
Young mother taught us, don't talk to strangers. In the age of the mobile Internet, replaced this sentence "don't connect public free WiFi" also established.
Tips
Micro sweep sweep, author tips bar ~
485 votes
Samsung Galaxy Note4
Throughout the mainstream of high-end mobile processors, is basically a Krait of Qualcomm and ARM Cortex-A15 two, along with Galaxy Note4 to market, Samsung also brought us the first Cortex-A57 Exynos 5433 schema processors, today we have is to use the Hong Kong version of the SoC Galaxy Note4.
View details of the voting >>