Friday 3 February 2017, Poradnik bezpieczeństwa

Hackers set up fake Wi-Fi hotspots to steal your information

Lost24

Do you know what happens if you connect to the hotspot of unknown origin? 


It was proven that using the touch screen in the phone disturbs the wi-fi signal and it can be used for watching what we type. For example, a PIN code in our bank application. 


Controlled attack on 3 types of mobile phones in order to get the PIN number in the popular Alipay payment system which in 2015 had as many as 900 million users. 


The test was supposed to prove that using the touch screen in the mobile phone disturbs the wi-fi signal which can lead to intercepting what we type by third parties. 


The effectiveness of the attack, tested in the Alipay payment system, was close to about 70%. 


The 6-number PIN was successfully intercepted with the assumption that the victim will connect to given hotspot in the distance 1.5 metre from the cybercriminal. Moreover, in order to get about 70%, effectiveness of intercepting the PIN the victim must type CAPTCHA given by the cybercriminal. The greatest difficulty is the fact that the cybercriminal must know in which moment we are typing the PIN code in the given payment system. 

Certainly, these are only controlled tests, however, they make us aware what danger it brings about to connect to the unknown hotspot.