Take home message: if you are using the hotspot feature on an iPhone, make sure you change the password.
http://arstechnica.com/security/2013/06/new-attack-cracks-iphone-autogenerated-hotspot-passwords-in-seconds/ / iOS Apple iPhone iPad iPod hack hacking hacked piggy back piggy-back piggyback steal theft secure security insecure secure protect password cell mobile smartphone smart phone hotspot feature current device override automatic password secure connection team researchers crack exploit exploiting vulnerability vulnerable weaknesses weakness version versions 6 earlier pick small pool passwords default computer science department Friedrich-Alexander University Erlangen Germany 24 seconds possible combinations time required cycle through optimized list possible password candidates capture four-way handshake negotiate negotiated wireless enabled device successfully connects WPA2 Wi-Fi Protected Access 2, device capture can be completed under a minute possession underlying hash attacker perform unlimited number offline password guesses important security implications share device's mobile Internet connectivity other Wi-Fi-enabled gadgets adversaries within range network exploit weakness quickly determine default pre-shared key prevent unauthorized join joining attackers leach connection monitor spoof e-mail network data passes between connected devices access point /
No comments:
Post a Comment