Source: Coinoperated - Posted by Benjamin D. Thomas
Wifi Liberator is an open-source toolkit for a laptop computer that enables its user to "liberate" pay-per-use wireless networks and create a free, open node that anyone can connect to for Internet access. The project is presented as a challenge to existing corporate or "locked" private wireless nodes to encourage the proliferation of free networks and connectivity across the planet. The project was inspired by the ongoing "battle" between providers broadcasting wireless signals in public spaces, in particular: corporate entities, wireless community groups, individual users, and proponents of open networks.
Maybe I’m a little old for it, but I do enjoy the change of pace a big wireless security penetration project provides. Once or twice a year, I get to put down my thrill-a-minute governance frameworks, quit rockin’ out policy advice, and make like the black hats for a week or two. There area few differences between this sort of project and the usual network security assessment. It also prompts a lot of questions from clients, peers and curious IT staff, most likely because it looks like a lot of fun. For the most part, it is.
Source: Government Computing News - Posted by Michael Cocke
The Navy, addressing concerns over the security of wireless networks and communications devices, has issued a servicewide policy setting standards for the use of commercial wireless hardware and services.
The policy, issued Nov. 30 by acting CIO John Lussier, applies to all unclassified commercial WLAN devices, services and technologies.
“Although sometimes mischaracterized as lacking security, wireless networks can in fact provide as much or as little security as the user wants,” said Andrew Kreig, president of the Wireless Communications Association International, a trade association in Washington.
“The instruction on improved network security for wireless local area networks is a logical next step for the military’s increasing use of advanced mobile networks facilitated by commercial providers,” Kreig added. “This instruction underscores the military’s commitment to the benefits of advanced networks, and also to taking necessary security precautions in a uniform manner across many applications, continents and, of course, high seas.”
Source: SecurityFocus - Posted by Benjamin D. Thomas
In part one of this series, we discussed the technical challenges for wireless traffic acquisition and provided design requirements and best practices for wireless forensics tools. In this second article, we take it a step further and focus on the technical challenges for wireless traffic analysis. Additionally, advanced anti-forensic techniques that could thwart a forensic investigation are analyzed. Finally, apart from the technical details, as a forensic write-up, the article covers some legal aspects about wireless forensics for both the U.S. and Europe.
As wireless technology explodes in popularity it also presents a new challenge to IT security, especially as it relates to maintaining confidentiality and integrity of data.
Source: SecurityFocus.com - Posted by Benjamin D. Thomas
The huge adoption of wireless technologies over recent years has placed wireless data (or Wi-Fi) networks, based on the 802.11 specifications, as one of the major attack vectors for organizations nowadays. Incident handlers and law enforcement have been forced to deal with the complexity associated with these technologies when managing and responding to security incidents.
This two-part series looks at the issues associated with collecting and analyzing network traffic from wireless networks in an accurate and comprehensive way; a discipline known as wireless forensics.
Opinion For four years, I've been pretty clear about my personal opinions on wireless hackers. I don't worry about them. So when I say: "It's time to worry about wireless hackers," it's not just another security consultant scare story being recycled - it's because I think things have changed.
Matthew Schuster began work as a computer technician for Alpha Computer Services in Wausau, Wisc., in 2000. Schuster provided technical support for a wireless Internet system called CWWIS and also was a paying subscriber to CWWIS for his home.
Schuster was fired in May 2003. His home CWWIS account was terminated and the balance of his monthly payment refunded. But he continued to use CWWIS by using "access information" belonging to Alpha customers such as the Central Wisconsin Convention and Visitors Bureau--and, according to the FBI, he intentionally disrupted CWWIS as well.
Source: Ladyada.net - Posted by Benjamin D. Thomas
This website details the design and construction Wave Bubble: a self-tuning, wide-bandwidth portable RF jammer. The device is lightweight and small for easy camoflauging: it is the size of a pack of cigarettes.
An internal lithium-ion battery provides up to 2 hours of jamming (two bands, such as cell) or 4 hours (single band, such as cordless phone, GPS, WiFi, bluetooth, etc). The battery is rechargeable via a mini-USB connector or 4mm DC jack (a common size). Alternately, 3 AAA batteries may also be used.
In the information age, surveillance isn't just for the police. Marketers want to watch you, too: what you do, where you go, what you buy. Integrated Media Measurement, Inc. wants to know what you watch and what you listen to -- wherever you are. They do this by turning traditional ratings collection on its head. Instead of a Neilsen-like system, which monitors individual televisions in an effort to figure out who's watching, IMMI measures individual people and tries to figure out what they're watching (or listening to).
