BLOG
 
Blog: WiFi Experts

Is Your Wireless Network Protected? AirMagnet Enterprise Releases New Wireless Threat Signatures
Author/Blog Contributor - Jesse Frankel, Product Manager, Fluke Networks
Date: November 08, 2011

With Halloween behind us, wireless engineers are back dealing with the scary realities of today’s wireless threats and vulnerabilities. But, if you’re a Fluke Networks’ customer running the AirMagnet Enterprise 9.0 Wireless Intrusion and Prevention System (WIPS), never fear because you’re more prepared than ever to defend your WLAN thanks to the release of new threat signatures.

New threat signature updates have been released via the Dynamic Threat Update (DTU) feature, which enables the automatic loading of new alarm signatures, without involving local IT staff.  The new update contains protection against critical new wireless threats, including Airdrop, Karmetasploit and DHCP Starvation Attacks:

  • AirDrop – Apple’s Mac OS X Lion includes the new AirDrop feature that allows multiple users to share files over a peer-to-peer Wi-Fi connection, which can be a violation of company security policies.  Risks that could result, include protected data being easily transferred to unknown machines outside of the enterprise network, and potentially leaving the network vulnerable to other active attacks.
  • Karmetasploit – This is an aggressive man in the middle (MitM) style attack that tricks a client into associating with a device masquerading as an access point running KARMA. This allows a hacker to do any number of the following: gain access to the client machine, capture passwords, harvest data and conduct a wide variety of application exploits.
  • DHCP Starvation Attack – A DHCP starvation attack run from a wireless client can cause other clients to connect to a malicious network.  Wireless guest networks and unencrypted commercial hotspots are especially vulnerable to this attack, which can lead to lost productivity or revenue.

Fluke Networks regularly releases new signature updates. More detail on each of the above threats/vulnerabilities is available in the community.

Previous DTU signature releases include:

  • Ad-hoc Station Broadcasting Free Public Wi-Fi SSID ­– This vulnerability allows hackers to lure unsuspecting wireless users through an ad-hoc network leveraging an old Microsoft bug in the XP OS (a fix was issued in Service Pack 3).
  • Airpwn – Airpwn is a framework for 802.11 packet injection.  It listens to incoming wireless packets, and if the data matches a pattern specified in the config files, custom content is injected (spoofed) from the wireless access point.  Airpwn only works on open wireless networks and WEP encrypted networks when the attacker knows the WEP key.
  • Device Broadcasting XSS SSID – Cross-site scripting vulnerabilities are well known and publicized attacks that target Web applications to gain access to the underlying server or the Web application itself.  It does this by injecting a client-side script into web pages viewed by the user.

 

 
Comments:
 
games online Nov. 7, 2013 6:52 PM

Cross-site scripting vulnerabilities are well known and publicized attacks that target Web applications to gain access to the underlying server or the Web application itself. It does this by injecting a client-side script into web pages viewed by the user.
paul Dec. 6, 2013 3:00 AM

Glad that I have found your people. Version 9.0 is able to dynamically update the WLAN Intrusion Prevention System against threats. The alarm code has now become much easier and user friendly. I have bookmarked your page for further reference.
visit the site
visit the site Dec. 6, 2013 3:01 AM

Glad that I have found your people. Version 9.0 is able to dynamically update the WLAN Intrusion Prevention System against threats. The alarm code has now become much easier and user friendly. I have bookmarked your page for further reference.
is bubblegum casting legitimate Apr. 3, 2014 3:02 AM

Well g such vital information regarding the AirMagnet Enterprise is the main highlight of this blog. I am very much excited to increase my knowledge associated with this and words
url opener May. 12, 2014 10:25 AM

OPEN MULTIPLE URL'S WITH JUST ONE CLICK
NOW YOU DO NOT HAVE TO WORRIED ABOUT OPENING VARIOUS URL'S WITH THE SINGLE CLICK OF YOUR MOUSE BUTTON. THE FAST URL OPENER CAN HELP YOU ACHIEVE THIS GOAL AND SAVE YOU SOMETIME AND BOTHERATION OF CLICKING THE MOUSE KEYS AGAIN AND AGAIN.
ENJOY THE WONDERS OF FAST URL OPENER AND SAVE TIME
About us Jun. 25, 2014 12:59 AM

I learned a ton about studio lighting gear and am excited about another upcoming shoot that I will be assisting him on at at boxing studio http://deepcool-au.com/
victoria one melbourne Jul. 10, 2014 5:06 AM

Fluke Networks regularly releases new signature updates. More detail on each of the above threats/vulnerabilities is available in the community.
online teaching degrees Sep. 10, 2014 3:19 AM

Risks that could result, include protected data being easily transferred to unknown machines outside of the enterprise network, and potentially leaving the network vulnerable to other active attacks.
http://www.myheritage.com/search-records?lang=HE&action=person&siteId=163794402&indId=1000005&origin=profile Sep. 11, 2014 9:25 AM

Fluke Networks regularly releases new signature updates. More detail on each of the above threats/vulnerabilities is available in the community.
Popular iPhone 6 Screen Protector Oct. 2, 2014 6:36 AM

This allows a hacker to do any number of the following: gain access to the client machine, capture passwords, harvest data and conduct a wide variety of application exploits.
Fiverr Blog Oct. 10, 2014 8:06 AM

Fluke Networks regularly releases new signature updates. More detail on each of the above threats/vulnerabilities is available in the communit
http://www.topinstagramfollowers.com/ Oct. 19, 2014 7:09 AM

Fluke Networks regularly releases new signature updates. More detail on each of the above threats/vulnerabilities is available in the community.
Buy Instagram followers Oct. 23, 2014 3:43 AM

Wireless guest networks and unencrypted commercial hotspots are especially vulnerable to this attack, which can lead to lost productivity or revenue.
Fort Lauderdale Escorts Nov. 12, 2014 3:10 AM

This allows a hacker to do any number of the following: gain access to the client machine, capture passwords, harvest data and conduct a wide variety of application exploits.
affordable seo services Nov. 15, 2014 11:23 PM

Fluke Networks regularly releases new signature updates. More detail on each of the above threats/vulnerabilities is available in the community.
I really enjoy simply reading all of your weblogs. Simply wanted to inform you that you have people like me who appreciate your work. Nov. 15, 2014 11:33 PM

I really enjoy simply reading all of your weblogs. Simply wanted to inform you that you have people like me who appreciate your work.
Jennifer Nov. 15, 2014 11:44 PM

Such a very useful article. Very interesting to read this article.I would like to thank you for the efforts you had made for writing this awesome article.
get rid of man boobs Nov. 15, 2014 11:59 PM

I am really enjoying reading your well written articles. It looks like you spend a lot of effort and time on your blog.
official site Nov. 16, 2014 12:07 AM

it very interesting and very well thought out and put together. I look forward to reading your work in the future.
San Francisco Swedish Massage Nov. 16, 2014 12:14 AM

I really love the quality writing as offered on this post, cheers to the writer.
Predictable Revenue Nov. 16, 2014 12:20 AM

Actually I read it yesterday but I had some thoughts about it and today I wanted to read it again because it is very well written.
how to invest in gold Nov. 16, 2014 12:28 AM

I just want to let you know that I just check out your site and I find it very interesting and informative.
my response Nov. 16, 2014 12:49 AM

I think it would. But I'm also just maybe Realizing That I Already have enough fun in my life!
project runway Nov. 16, 2014 1:35 AM

Pretty good post. I just stumbled upon your blog and wanted to say that I have really enjoyed reading your blog posts.
helpers Nov. 16, 2014 1:46 AM

You clearly know what you're talking about, why waste your intelligence on just posting videos to your blog when you could be giving us something enlightening to read?
followfy Nov. 16, 2014 2:17 AM

The way of writing is excellent and also the content is top-notch. Thanks for that insight you provide the readers!
dripfollowers Nov. 16, 2014 2:21 AM

its really fantastic blog . its realy informational and a such a good job. i love this
magnetic screen door Nov. 16, 2014 2:32 AM

very spectacular possibility to read critical reviews from this site.
paper writing service Nov. 16, 2014 3:24 AM

The most vital focuses in your article would be the offer of coverlets showed, whether you have extraordinary or novel materials available to be purchased, or whether one of your blankets were sold to renowned individuals. Then again, stress on the way that stitching is about hand work, as well as about sewing machines. On the off chance that you figure out how to effectively expand on some of these focuses above, then the daily paper proofreader will doubtlessly be intrigued by what you're bringing new to the business.

Post a Comment:

Name:
*
 
Email:
*
Note: Your email will not be displayed.
 
Comments:
 *
 
Verification:
Enter in the characters from the image below:
 *
 
 
Blog Contributor

Jesse Frankel has extensive experience in delivering critical wireless security solutions for enterprise, clinical and government networks. During his 6+ years at AirMagnet he served as Director, System Engineering and as a member of AirMagnet's Wireless Intrusion Research Team.

Blog Archive
 
Other Social Media Sites We Recommend:
Home  |  Security Center  |  All Things Wi-Fi  |  Blog  |  Library  |  AirMagnet.com  |  FlukeNetworks.com
© 2006-2012 Fluke Corporation. All rights reserved.