WVE News

SANS Institute Sponsors WVE

Sun, 20 Apr 2008 03:50:43 GMT

We are very excited to announce that the SANS Institute has become an official sponsor of the WVE project. Many of our readers know the SANS Institute as a well-respected, global authority for information security training, certification & research. SANS is widely known for their significant contributions to the information security community through research publications and the Internet Storm Center.

Like WVE, the SANS Institute is dedicated to helping the community with valuable information resources, and we are happy to have them sponsor us. Welcome, SANS Institute!

Wireless Attackers and Honeypot Technology

Tue, 15 Apr 2008 18:56:22 GMT

Security analyst Raul Siles has developed a paper on the use of wireless honeypot (dubbed "honeyspot") technology to study the skills and capabilities of wireless attackers. Describing the architecture and deployment of a wireless honeypot, Siles' paper is a valuable resource for enhancing the security of wireless networks, either as an attacker skillset and technique analysis tool, or as a deterrent to ward attackers away from other networks (e.g. "Pay no attention to the man behind the curtain"). More information is available on Raul's blog post or you can grab the paper from the Spanish Honeypot website. Thanks Raul!

High Speed Risks in 802.11n Slides Posted

Sat, 12 Apr 2008 01:57:35 GMT

Following his RSA 2008 presentation titled "High Speed Risks in 802.11n Networks", WVE editor Joshua Wright has posted his slides. New WVE entries pertaining to these issues have also been created. Comments are most welcome. Thanks!

Vulnerabilities in 802.11n

Thu, 10 Apr 2008 02:13:53 GMT

New entries highlighting vulnerabilities in IEEE 802.11n networks are being added to the database. This is in coordination with WVE editor Joshua Wright's presentation tomorrow at the RSA 2008 conference in San Francisco titled "High Speed Risks in 802.11n Networks". Presentations slides will be posted on Josh's website, and linked here on the News page. If you are at the RSA conference, be sure to catch Josh's presentation at 8:00am on Thursday (WIR-301).

WVE Editors Speaking at SHARKFEST.08

Thu, 03 Jan 2008 16:24:50 GMT

Two WVE editors, Mike Kershaw and Joshua Wright, have been selected as speakers at the first annual SHARKFEST conference. This Wireshark developer and user event is 3 days of training and discussions on network analysis, troubleshooting, security, Wireshark development, communications dissection and more.

Mike Kershaw is giving a session titled "WLAN Analysis & Security", focusing on security analysis with Wireshark. Joshua Wright is giving a session titled "Leveraging Wireshark for Wireless Network Analysis", focusing on WLAN operational troubleshooting and debugging.

SHARKFEST.08 is on March 31 - April 2 at Foothill College in Los Altos Hills, CA. More information including an agenda for the conference is available on the SHARKFEST website.

Paper: Dispelling Bluetooth Security Misconceptions

Sat, 22 Sep 2007 15:56:41 GMT

In 2006, the Bluetooth SIG announced that over 1 billion Bluetooth adapters had shipped. Many organizations overlook the threat of Bluetooth technology in their organizations, even though many types of Bluetooth devices can expose organizations to attack.
The paper "Dispelling Common Bluetooth Misconceptions" examines several threats commonly overlooked when working with Bluetooth technology. Comments are most welcome.

"I Can Hear You Now", Eavesdropping on Bluetooth Headsets

Tue, 18 Sep 2007 17:19:27 GMT

WVE editor Joshua Wright has posted a video on YouTube, describing an attack against a Bluetooth headset. Using a standard Linux workstation, he shows how headset devices can be exploited as audio bugs from significant distances, recording and inject arbitrary audio through the headset device. You can check out the clip at http://www.youtube.com/watch?v=1c-jzYAH2gw. Please direct comments or questions to Josh directly.

Paper: Five Wireless Threats You May Not Know

Thu, 13 Sep 2007 19:26:15 GMT

WVE Editor Joshua Wright has published a paper to help organizations understand the risks associated with modern WLAN deployments. While many organizations have turned to strong encryption mechanisms such as TKIP or CCMP, and strong authentication mehchanisms such as PEAP and EAP/TLS, it does not satisfy several remaining threats in wireless security. "Five Wireless Threats You May Not Know" is available on the author's website.

Cracking Cisco LEAP with ASLEAP for Win32

Fri, 01 Jun 2007 18:51:28 GMT

WVE editor Devin Akin has created a video showing how to crack a LEAP protected network by utilizing ASLEAP2 under Windows. In the video Devin shows how to capture the authentication exchange, convert it to Pcap format, and then how to use ASLEAP. Check out the preview.

Securing a RADIUS server

Fri, 01 Jun 2007 18:43:48 GMT

In the latest installment of our wireless security column at NetworkWorld , WVE editor Andrew Lockhart, responds to a reader's question about how to protect a RADIUS server.