{"id":6512,"date":"2022-07-23T07:08:54","date_gmt":"2022-07-22T23:08:54","guid":{"rendered":"https:\/\/x-phy.com\/?p=6512"},"modified":"2022-07-23T07:08:54","modified_gmt":"2022-07-22T23:08:54","slug":"public-wifi-vulnerability","status":"publish","type":"post","link":"https:\/\/x-phy.com\/public-wifi-vulnerability\/","title":{"rendered":"Public Wifi – A Use Case in Outdoor Usage"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

The major security concern for Public internet is the Wifi vulnerability<\/a> to hacking. Rogue users can easily crack the wifi key to access and control the wifi router<\/a> to redirect the genuine users to malicious websites. Just like that, Kevin\u2019s laptop was on the verge of being attacked while he was at a coffee shop in a meeting with a client. While discussing a project, he connected with the public wifi<\/a> to research on the internet.<\/p>

A hacker was also connected to the same network. Utilizing the wifi vulnerability to hacking, he cracked the Wifi password and gained access to the Wifi router. Now he can monitor all the user activity sharing the same network. He particularly targeted the users using NVMe protocol-based storage<\/a> on their systems. He performed a MITM attack to redirect users into a malicious website by altering the DNS settings.
Kevin was redirected to that malicious website and the hacker was able to steal his login credentials. Being unaware of the attack, Kevin continued working online using the Wifi.\u00a0<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t

\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

With the java applet, the hacker tried to unroot a second boot loader, to upload new firmware<\/a> onto\u00a0X-PHY\u00ae<\/a>\u00a0to get access to the data from the laptop.\u00a0<\/p>

The real-time AI surveillance<\/a> detected the second boot loader and immediately triggered the Keycode Pro-X within the X-Factor Encryption feature. The file and pattern engine further verified the checksum and signature<\/a> for the new firmware. Although it is detected as a trusted host device, the verification failed because the signature and the unique serial number of the\u00a0X-PHY\u00ae<\/a>\u00a0did not match.\u00a0<\/p>

So, the boot loader was denied within a few seconds and a notification alert was sent to Kevin\u2019s smartphone via pre-configured Bluetooth (BLE).<\/a><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

X-PHY Protection Method<\/strong><\/h4>

1. The AI real-time monitoring activates the Keycode Pro-X upon detecting the upload of new firmware onto the X-PHY\u00ae.<\/a><\/p>

2. File and pattern engine begin verification of checksum and signature of the uploading boot loader<\/p>

3. The X-PHY\u00ae detects the source<\/a> of the update in a genuine host device.<\/p>

4. Verification of checksum and signature fails as the firmware is not signed for the unique serial number on the X-PHY\u00ae.<\/p>

5. Halts the uploading of a second boot loader and sends alerts to the user over BLE.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t

\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

The major security concern for Public internet is the Wifi vulnerability to hacking. Rogue users can easily crack the wifi key to access and control the wifi router to redirect […]<\/p>\n","protected":false},"author":2,"featured_media":6513,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"content-type":"","inline_featured_image":false,"footnotes":""},"categories":[12],"tags":[],"class_list":["post-6512","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-use-cases"],"_links":{"self":[{"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/posts\/6512","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/comments?post=6512"}],"version-history":[{"count":0,"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/posts\/6512\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/media\/6513"}],"wp:attachment":[{"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/media?parent=6512"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/categories?post=6512"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/x-phy.com\/wp-json\/wp\/v2\/tags?post=6512"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}