Researchers from Liverpool University have shown in practice that a computer virus can spread through Wi-Fi access points between homes and companies just as a common cold translates from one person to another.
Researchers conducted a Chameleon virus experiment using a WLAN attack technique to infect access points and collect the credentials of all users connected to Wi-Fi. Then, he seeks to discover other access points, and connects with them and infects them.
The main feature of the virus highlighted by the researchers is the fact that the virus only infects unprotected Wi-Fi. Through networks that do not use passwords Chameleon can be spread without any difficulty.
In their experiment, the researchers carried out a simulation attack on the cities of Belfast and London. Although the virus can not be transmitted through the access points protected by encrypted passwords, it spreads through unauthorized ones such as airports and cafes.
WiFi connections are increasingly a target for hackers due to their well-documented vulnerabilities, which make it difficult to detect and defend against a virus," said Alan Marshall, καθηγητής της Ασφάλειας Δικτύων στο Πανεπιστήμιο του Λίβερπουλ και ένας από τους συντάκτες της ερευνητικής work.
"We believed that it was not possible to develop a virus that could attack wireless networks, but we proved that it is possible and that it can spread very quickly. "We are now able to use the data from this study and develop a new identification technique if such an attack ever starts," Marshall said.
Attacks such as that described by researchers can be alleviated with the help of intrusion detection systems (IDS). These systems are usually based on the read signal strength indicator (RSSI) readings to locate the device's location.
However, IDS can be bypassed by copying the expected RSSI values. This can be achieved by placing malicious access points in a similar radius as the target radius, or by processing of the RSSI output to make sure it matches the target values.
The research paper suggests a more effective strategy to detect such viruses. The method proposed by the experts is based on information management framework and is capable of detecting such attacks while maintaining protection privacy and user confidentiality.
The research of the University "Detection and analysis of the Chameleon WiFi access point virus, "(PDF) is available on the EURASIP website.
