Attack on Mi-Fi can reveal user's location

Attack on Mi-Fi can reveal user's location
Mi-Fi devices have become synonymous with the word share – its blatant purpose is to share 3G wireless connections over a Wi-Fi network. So there’s no wonder why they’ve become so popular since their release with even more to come down the pipelines from different manufacturers. Sometimes it can share information that’s not meant to be viewed by others; thus making it prone to attacks from an outside source because of its ability to share. Someone has managed to identify in both Mi-Fi devices from Sprint and Verizon that they are prone to a multitude of attacks from hackers. They can seemingly gain access to the GPS location of the device without the user’s knowledge by using a combination of attacks – clearly exposing a loophole that’s been hidden.  It’s even scarier when the ensuing attack does not require an authentication or if the GPS has been disabled by the administrator. The security researcher going by the name Adam Baldwin was able to exploit this vulnerable attack in order to educate people about its existence.

source: evilpacket via Slashdot


FEATURED VIDEO

7 Comments

1. jrcrow79

Posts: 477; Member since: May 02, 2008

good to know I dont have sprint or even mifi anything nor do I use a router ;-)..simple is more secure than security itself!

2. rhomaion

Posts: 187; Member since: Sep 23, 2009

This is true, but where is the fun in that? Boo! Everything can be hacked today sir so don't think that your simple modem means you are "invisible" to attackers.

7. cellgeek82

Posts: 518; Member since: Dec 20, 2009

I agree with rhomaion, basically if you're on the "net", you can be found and you can be hacked. The only way you can't be hacked is simply ditch internet and wireless activity. If something basic as a wireline telephone can be tapped, then broadband internet can definatly be hacked. This is also how federal law enforcement finds "people of interest" when a warrant is issued. Unless you're smarter than the hacker or you have some super locked down home network, anything is possible.

3. mr. anderson

Posts: 92; Member since: Apr 16, 2009

the mifi only has a range of 30 feet, so random guessing would be pretty effective to determine the users location as well. hell, id bet that you could determine the users location because they had their mifi on the table next to their laptop

4. Illyich

Posts: 167; Member since: Oct 13, 2009

I think they're saying you don't have to be within that 30 ft. to hack into it and gain access.

5. Kiltlifter

Posts: 742; Member since: Dec 11, 2008

Yeah... where is the youtube video demonstration on this. What attack lines were used? What esn's were used? what firmware was installed on the Mifi 2200 units? Oh wait.. "Adam" doesn't know. Sounds like another bomb scare in the mobile industry and shotty news investigating like the NY Times. Give me proof, facts and a demonstration with more than 2 devices, and perhaps some random suprise devices from outside people, and I might consider this useful.

6. Rhetoric

Posts: 74; Member since: Jul 25, 2009

Oh crap, they know where i am now. ! Who cares.

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.