Hackers attack IT conference

Security experts attending the Wireless LAN exhibition found that anonymous hackers in the crowd had created a website that looked like a genuine log-in page for a Wi-Fi network, but which actually sent 45 random viruses to computers that accessed it.

"This is very nasty as we've never seen it before," said Spencer Parker, a director of technical solutions at AirDefense. "It downloads 45 different randomly generated viruses, worms and keyloggers so antivirus software doesn't protect it. It doesn’t recognise the signatures."

Parker said that the hackers walked around the exhibition carrying a Linux-based laptop running software that turned it into a wireless access point. Initially, they labelled the hotspot "Free_Internet_Access", then "BTOpenzone" and then "T-Mobile".

Parker, whose computer was infected by the attack, believes that the website was up for half an hour.

The technique has evolved from an "evil twin" attack, where hackers host fake log-in websites at commercial Wi-Fi hotspots. This was originally used to lure people into typing in credit card details onto the web page, so the hacker could steal them.

Parker said he saw a number of suspicious people asking "very advanced questions" at the event.

"I saw guys walking round with company badges and I knew they didn’t work for those firms. Hackers like to know what's going on," he said.

Organisers of the Wireless LAN event could not immediately be contacted for comment.

The registration process at Olympia Exhibition Halls required people to produce a business card as a form of identification. Pre-registration required no form of ID.

Continuity Forum Research has previously shown that there is a general trend for companies to underestimate the threat to corporate Networks through the use of Wireless Technologies. Russell Price says that “the convenience of Wireless Technology is great, but that is no reason to forget the importance of security. The exchange of corporate data in this way exposes business to new threats as this example clearly shows. Remember that unless you have taken precautions and keep them current any access to networks though WiFi Hotspots poses significant risks”


To find out more about how the Continuity Forum can help your organisation plan for and address a wide variety of Business Resilience and Continuity issues, please contact us directly HERE! or call us on 020 8993 1599.