Discover Yahoo! With Your Friends

Explore news, videos, and much more based on what your friends are reading and watching. Publish your own activity and retain full control.

To get started, first

YOUR FRIENDS' ACTIVITY

    Insecure WiFi At 30,000 Feet

    By Marc Weber Tobias | Forbes – Mon, Jun 27, 2011

    Last week I attended Agora,  an elite cyber-security gathering at the University of Washington campus in Seattle. This is an event that is held every few months for security experts in business, academia, government and law enforcement. One of my colleagues, steeped in the skills of network penetration, flew to the conference on a cross-country Delta flight.

    He told me with great interest all about how he used the Gogo WiFi internet service on his iPad 2 tablet during the flight. You might think he was surfing, doing email, or reading the New York Times during the long flight, like a normal passenger. Nope, our penetration specialist was instead port-scanning the wireless router on board the aircraft. He was gathering information on all the passengers logged into the service, which is now prevalent on board many Delta, United, Continental, Air Canada, U.S. Airways, Air Trans, Virgin America, Alaska, and Frontier aircraft throughout the United States. The connectivity is quite good, in fact so good that it allowed my associate to use this wireless router as a launch-point to connect to a  server in Asia that is suspected of being a hacker haven and examine and document its local configuration.

    Passengers need to be aware of the security vulnerabilities of accessing any public wireless network from a laptop  while on board an aircraft or cruise ship or from other public venues. Earlier this year I contacted Gogo and sent them a detailed request for technical information on how they secure their environment and that of their clients.  Although they initially said they would provide the requested data, they later refused to offer any information whatsoever.

    Their service allows access to email, web, banking and virtually anything you can do from the office or home. I use my Android phone and tablet to receive and respond to email, although my Blackberry will not work on the system. I have obtained speeds of up to 250 Kb/s, which is not bad considering the environment. I find many passengers are using the service on their laptops and tablets and smartphones. The problem is that it is no more secure than any other public network, and depending upon the status of the computers that are accessing the network, can pose a real security threat to users, especially if the flight has a “hacker” passenger on board.

    I spent several hours with my colleague in order to understand exploits and potential risks on Gogo and other public access services. Because all users on board will likely be using one IP subnet, all of their computers can be easily scanned for open ports that can be compromised.

    Every computer has a unique MAC address, or machine ID. The first four characters of this address identify the manufacturer, so if you walk down the aisle, you can begin to associate traffic with one or more target computers. If someone is using a Lenovo, for example, you can begin to target that particular computer. This would be especially troublesome if you were a person who was actually in the sights of a sophisticated hacker as part of an effort to compromise critical corporate or personal information.

    If you were under surveillance and followed, this could be a problem. I was just in Tel Aviv and Zurich meeting with a colleague who has been quite successful in tracking major fraudsters through various tools that are all based upon Internet usage including popular VoIP communications facilities which can yield a great deal of information with the proper access.

    You may feel you're secure by logging into your mail server, office, bank, or brokerage with SSL or TLS encryption. Yes, the session is secure, but your computer is a different story. If it has security vulnerabilities that have not been fixed by software updates, then it can be compromised at a lower level and the contents of your session captured in an unencrypted state.

    An application such as a key-logger can be secretly installed on your computer while you are online. This can capture in plaint-text all of your session traffic and screen shots. All of your traffic can then be monitored real-time, uploaded to an email address later, or upon command by the bad guys. You will not know it. We used to employ this piece of software to monitor and catch pedophiles that were accessing child pornography sites. They never knew we were watching them until they were arrested.

    Your greatest vulnerability is the failure to keep your computer updated from Microsoft, Apple, or Google for security patches, not only for your laptop but for the software it runs as applications. Up to ninety percent of all computers are not routinely updated and are at risk, according to FBI studies. If there is a way in, it may be easily exploited.

    My colleague explained that he was using a program on his iPad called Scany,which was available on the App Store. It scans packets and all of the traffic on the subnet. He explained that code could be injected into a target computer to obtain personal information.

    It gets better.

    Your computer can be used as a launching pad for other attacks or to exploit access to your computer remotely.  So on the plane, you could use another passenger's computer to launch attacks against other passengers.  If one of the passengers was smart enough to trace back the attack, the wrong computer/person would be identified as the hacker.

    If you want to insure the security of your session, you should, at a minimum do the following:

    • Be certain that your computer and tablet has the latest security patches and is fully protected with ALL vendor patches, and that Anti-Virus is running, together with a firewall, and the system is being monitored for malware;

    • If you are running a Mac it may be less vulnerable, but vulnerable nonetheless

    • My experts prefer the following programs: MalwareBytes and Emsisoft, Webroot and Norton or McAfee for Anti-virus

    • Use a Virtual Private Network if possible, or at least an encrypted session

    • Use an iPad or Android tablet rather than your laptop. It is less prone to malware and the ability to inject Trojans and other executable programs. These devices may be much more secure than Windows or the MacOS

    • Turn Bluetooth discovery off. Bluetooth can act as a gateway just like WiFi

    • Use an encryption level of WPA2 personal, at the very minimum

    If you really want to be certain that your data and sessions are absolutely secure, then use a hardware encrypted USB memory device loaded with the operating system for your computer.

    The U.S. Navy does this, through a secure system currently on a USB device called “NMCI on a Stick”, This was a McAfee security offering to the military which was released through NMCI-McAfee partnership. The acronym NMCI means Navy and Marine Corps Intranet. NMCI came into existence about eight years ago and was an EDS project, which is now owned by HP.  McAfee partnered with MXI Security to develop this product. The same device is offered in the commercial sector from MXI in the U.S.

    In my next article, I interview Christian Gunning, one of the founders of Boingo Internet service, which has more than 325,000 hotspots in their network. His company is defining security risks for all of their locations in order to protect its users.

    Also Read
     

    There are no comments yet

    [ [ [['Connery is an experienced stuntman', 2]], 'http://yhoo.it/KeQd0p', '[Slideshow: See photos taken on the way down]', ' ', '630', ' ', ' ', ], [ [['Connery is an experienced stuntman', 7]], ' http://yhoo.it/KpUoHO', '[Slideshow: Death-defying daredevils]', ' ', '630', ' ', ' ', ], [ [['know that we have confidence in', 3]], 'http://yhoo.it/LqYjAX ', '[Related: The Secret Service guide to Cartagena]', ' ', '630', ' ', ' ', ], [ [['We picked up this other dog and', 5]], 'http://yhoo.it/JUSxvi', '[Related: 8 common dog fears, how to calm them]', ' ', '630', ' ', ' ', ], [ [['accused of running a fake hepatitis B', 5]], 'http://bit.ly/JnoJYN', '[Related: Did WH share raid details with filmmakers?]', ' ', '630', ' ', ' ', ], [ [['accused of running a fake hepatitis B', 3]], 'http://bit.ly/KoKiqJ', '[Factbox: AQAP, al-Qaeda in Yemen]', ' ', '630', ' ', ' ', ], [ [['have my contacts on or glasses', 3]], 'http://abcn.ws/KTE5AZ', '[Related: Should the murder charge be dropped?]', ' ', '630', ' ', ' ', ], [ [['have made this nation great as Sarah Palin', 5]], 'http://yhoo.it/JD7nlD', '[Related: Bristol Palin reality show debuts June 19]', ' ', '630', ' ', ' ', ], [ [['have made this nation great as Sarah Palin', 1]], 'http://bit.ly/JRPFRO', '[Related: McCain adviser who vetted Palin weighs in on VP race]', ' ', '630', ' ', ' ', ], [ [['A JetBlue flight from New York to Las Vegas', 3]], 'http://yhoo.it/GV9zpj', '[Related: View photos of the JetBlue plane in Amarillo]', ' ', '630', ' ', ' ', ], [ [['the 28-year-old neighborhood watchman who shot and killed', 15]], 'http://news.yahoo.com/photos/white-house-stays-out-of-teen-s-killing-slideshow/', 'Click image to see more photos', 'http://l.yimg.com/cv/ip/ap/default/120411/martinzimmermen.jpg', '630', ' ', 'AP', ], [ [['Titanic', 7]], 'http://news.yahoo.com/titanic-anniversary/', ' ', 'http://l.yimg.com/a/p/us/news/editorial/b/4e/b4e5ad9f00b5dfeeec2226d53e173569.jpeg', '550', ' ', ' ', ], [ [['He was in shock and still strapped to his seat', 6]], 'http://news.yahoo.com/photos/navy-jet-crashes-in-virginia-slideshow/', 'Click image to see more photos', 'http://l.yimg.com/cv/ip/ap/default/120406/jet_ap.jpg', '630', ' ', 'AP', ], [ [['xxxxxxxxxxxx', 11]], 'http://news.yahoo.com/photos/russian-grannies-win-bid-to-sing-at-eurovision-1331223625-slideshow/', 'Click image to see more photos', 'http://l.yimg.com/a/p/us/news/editorial/1/56/156d92f2760dcd3e75bcd649a8b85fcf.jpeg', '500', ' ', 'AP', ] ]
    [ [ [['did not go as far his colleague', 8]], '29438204', '0' ], [ [[' the 28-year-old neighborhood watchman who shot and killed', 4]], '28924649', '0' ], [ [['because I know God protects me', 14], ['Brian Snow was at a nearby credit union', 5]], '28811216', '0' ], [ [['The state news agency RIA-Novosti quoted Rosaviatsiya', 6]], '28805461', '0' ], [ [['measure all but certain to fail in the face of bipartisan', 4]], '28771014', '0' ], [ [['matter what you do in this case', 5]], '28759848', '0' ], [ [['presume laws are constitutional', 7]], '28747556', '0' ], [ [['has destroyed 15 to 25 houses', 7]], '28744868', '0' ], [ [['short answer is yes', 7]], '28746030', '0' ], [ [['opportunity to tell the real story', 7]], '28731764', '0' ], [ [['entirely respectable way to put off the searing constitutional controversy', 7]], '28723797', '0' ], [ [['point of my campaign is that big ideas matter', 9]], '28712293', '0' ], [ [['As the standoff dragged into a second day', 7]], '28687424', '0' ], [ [['French police stepped up the search', 17]], '28667224', '0' ], [ [['Seeking to elevate his candidacy back to a general', 8]], '28660934', '0' ], [ [['The tragic story of Trayvon Martin', 4]], '28647343', '0' ], [ [['Karzai will get a chance soon to express', 8]], '28630306', '0' ], [ [['powerful storms stretching', 8]], '28493546', '0' ], [ [['basic norm that death is private', 6]], '28413590', '0' ], [ [['songwriter also saw a surge in sales for her debut album', 6]], '28413590', '1', 'Watch music videos from Whitney Houston ', 'on Yahoo! Music', 'http://music.yahoo.com' ], [ [['keyword', 99999999999999999999999]], 'videoID', '1', 'overwrite-pre-description', 'overwrite-link-string', 'overwrite-link-url' ] ]

    News For You

    Loading...