Shady public Wi-Fi networks are up there with Nigerian scammers for the most clichéd way to get hacked. But just as surely as people will continue using “password12", set up free Wi-Fi, and people will come.
To prove the point, researchers from Avast set up a bunch of likely-looking Wi-Fi networks at Barcelona airport, in order to trap people passing through for Mobile World Congress. Using names like “Starbucks”, “Airport_Free_Wifi_AENA” and “MWC Free WiFi”, the researchers captured 2,000 users in four hours.
From their unsuspecting victims, the researchers were able to pull a bunch of data, like what websites they were browsing and what apps were installed on phones. If they were more nefarious, they would have been able to pull any sensitive (and non-encrypted) information being transmitted by users.
The results aren’t really a surprise: even I have randomly connected to Wi-Fi in airports when I’m in need, and I never use a VPN on my phone. But still, it’s a timely reminder not to connect to unknown networks, and if you do, don’t log into your online banking. [Avast]