Researchers from Liverpool University have shown in practice that a computer virus can spread through Wi-Fi access points between homes and companies just as a common cold translates from one person to another.
Researchers conducted a Chameleon virus experiment using a WLAN attack technique to infect access points and collect the credentials of all users connected to Wi-Fi. Then, he seeks to discover other access points, and connects with them and infects them.
The main feature of the virus highlighted by the researchers is the fact that the virus only infects unprotected Wi-Fi. Through networks that do not use passwords Chameleon can be spread without any difficulty.
In their experiment, the researchers carried out a simulation attack on the cities of Belfast and London. Although the virus can not be transmitted through the access points protected by encrypted passwords, it spreads through unauthorized ones such as airports and cafes.
"WiFi connections are increasingly being targeted by hackers because of their well-documented vulnerabilities, which make it difficult to detect and defend against a virus," said Alan Marshall, a professor of network security at the University of Liverpool and one of authors of research work.
"We believed that it was not possible to develop a virus that could attack wireless networks, but we proved that it is possible and that it can spread very quickly. "We are now able to use the data from this study and develop a new identification technique if such an attack ever starts," Marshall said.
Attacks such as that described by researchers can be alleviated with the help of intrusion detection systems (IDS). These systems are usually based on the read signal strength indicator (RSSI) readings to locate the device's location.
However, IDS can be bypassed by copying the expected RSSI values. This can be accomplished by placing malicious access points on a similar radius like the target radius, or by processing the RSSI output to be sure it matches the target values.
The research project proposes a more effective strategy for the detection of such viruses. The proposed method by the experts is based on management framework information and is capable of detecting such attacks, while maintaining privacy and user confidentiality.
The research of the University "Detection and analysis of the Chameleon WiFi access point virus, "(PDF) is available on the EURASIP website.