Carding Forum
Professional
- Messages
- 2,788
- Reaction score
- 1,177
- Points
- 113
Australian Federal Police have charged a man (the name of the suspect was not disclosed) who carried out attacks like Evil Twin on various domestic flights and at airports in Perth, Melbourne and Adelaide. In this way, he "hijacked" someone else's email and collected credentials from social networks.
The investigation began in April 2024 after a statement from employees of an unnamed airline who noticed a suspicious Wi-Fi network on one of the domestic flights. As a result, law enforcement officers detained a man who had a "portable wireless access device, laptop and mobile phone"in his hand luggage. After receiving a warrant, the police raided the 42-year-old suspect's home, then arrested him and charged him.
The term Evil Twin refers to Wi-Fi attacks in which a malicious or fake access point uses the same SSID as a legitimate network in a specific zone.
For example, on many flights, passengers are offered onboard Wi-Fi, and for this you need to connect to the airline's Wi-Fi network. In this case, the criminal imitated the airline's network, creating another network with the same SSID, which he completely controlled.
Typically, users who attempt to connect to such malicious access points end up on a fake login page or web page where they are asked to log in using an email address, password, or other credentials.
So, it is reported that the arrested Australian used a portable device to create Wi-Fi access points, which required users to log in using email or social media accounts. Such forgeries were found at airports in Perth, Melbourne and Adelaide, as well as on a number of domestic flights and in places associated with the detainee's previous place of work.
The man collected this data and could then use it to access other confidential information, take over other people's social media accounts, extort or sell it to other criminals.
The charges against the man relate to unauthorized access to other people's devices and illegal access to personal information. In fact, none of them suggests that the defendant somehow used the data that he accessed.
However, the charges also include "storing data for the purpose of committing a serious crime", that is, the detainee clearly knew how to use the collected data for criminal purposes.
Currently, the accused is released on bail, but he was banned from performing certain actions on the Internet.
Law enforcement officers remind that free Wi-Fi networks do not require logging in using email or social media accounts. It is also recommended to disable file sharing, avoid using important applications (such as banking) while using public networks, and manually delete connections after use so that devices do not reconnect to them automatically.
Interestingly, in addition to this, the Australian Federal Police advised users of public Wi-Fi networks to "install a reliable VPN on their devices in order to encrypt and protect their data when working on the Internet."
• Source: https://www.afp.gov.au/news-centre/...-evil-twin-free-wifi-networks-access-personal
The investigation began in April 2024 after a statement from employees of an unnamed airline who noticed a suspicious Wi-Fi network on one of the domestic flights. As a result, law enforcement officers detained a man who had a "portable wireless access device, laptop and mobile phone"in his hand luggage. After receiving a warrant, the police raided the 42-year-old suspect's home, then arrested him and charged him.
The term Evil Twin refers to Wi-Fi attacks in which a malicious or fake access point uses the same SSID as a legitimate network in a specific zone.
For example, on many flights, passengers are offered onboard Wi-Fi, and for this you need to connect to the airline's Wi-Fi network. In this case, the criminal imitated the airline's network, creating another network with the same SSID, which he completely controlled.
Typically, users who attempt to connect to such malicious access points end up on a fake login page or web page where they are asked to log in using an email address, password, or other credentials.
So, it is reported that the arrested Australian used a portable device to create Wi-Fi access points, which required users to log in using email or social media accounts. Such forgeries were found at airports in Perth, Melbourne and Adelaide, as well as on a number of domestic flights and in places associated with the detainee's previous place of work.
The man collected this data and could then use it to access other confidential information, take over other people's social media accounts, extort or sell it to other criminals.
The charges against the man relate to unauthorized access to other people's devices and illegal access to personal information. In fact, none of them suggests that the defendant somehow used the data that he accessed.
However, the charges also include "storing data for the purpose of committing a serious crime", that is, the detainee clearly knew how to use the collected data for criminal purposes.
Currently, the accused is released on bail, but he was banned from performing certain actions on the Internet.
Law enforcement officers remind that free Wi-Fi networks do not require logging in using email or social media accounts. It is also recommended to disable file sharing, avoid using important applications (such as banking) while using public networks, and manually delete connections after use so that devices do not reconnect to them automatically.
Interestingly, in addition to this, the Australian Federal Police advised users of public Wi-Fi networks to "install a reliable VPN on their devices in order to encrypt and protect their data when working on the Internet."
• Source: https://www.afp.gov.au/news-centre/...-evil-twin-free-wifi-networks-access-personal
