Not all WiFi networks can be trusted, and connecting to an unsecure one can pose significant risks. These risks include data theft, password breaches, and being redirected to fraudulent websites. This is particularly prevalent in public locations such as shopping centers, airports, and restaurants, where hackers can create fake networks to exploit unsuspecting individuals. The question arises: Can we identify these fake WiFi networks? Let’s introduce a new program designed specifically for detecting counterfeit WiFi networks in our vicinity.
The primary objective of this program is to prevent us from connecting to potentially problematic WiFi networks. However, it’s important to note that even the networks identified as trustworthy by the program may still carry risks. Therefore, when accessing the Internet in public places, it is highly recommended to utilize a VPN (Virtual Private Network) to encrypt your connection and enhance security.
Snappy, a program to detect fake WiFi
A team of security researchers has developed a tool called Snappy, which aims to identify unauthorized WiFi access points within open networks. Its purpose is to detect false networks that have been created with the intention of stealing data from unsuspecting users.
Fake access points can be found anywhere, but they are particularly prevalent in high-traffic areas. Locations such as airports, shopping centers, and restaurants are often targeted. However, these fake networks can be present in numerous other places as well.
So, what exactly is the issue with these counterfeit networks? The problem lies in the fact that the attackers gain control over the network, enabling them to intercept transferred data. This type of attack is commonly known as a Man-in-the-Middle attack. The attackers can capture sensitive information, including passwords, that users submit to websites. By monitoring the devices connected to the WiFi, it becomes possible to identify any potential intruders.
Detect if a network is different
In a common scenario, an attacker can exploit the fact that your device automatically connects to a previously saved network with the same name or SSID. While the original network might be legitimate, cybercriminals take advantage of this by creating a similar network with malicious intentions to steal your data.
The purpose of Snappy is to compare the nearby access point with the one you previously connected to and determine if it is genuine or a scam. By analyzing specific parameters such as the internet provider, channel, maximum power, and other router characteristics, Snappy can identify potential discrepancies that indicate a fake network.
If all the analyzed parameters match, it indicates that the access point is the same as before and there is no danger. However, if there are changes in the gathered information, it suggests the presence of a counterfeit network created with the same name to deceive users and steal their data. Snappy serves as an alert mechanism, allowing users to take necessary precautions to avoid falling into the trap.
At present, Snappy is a development tool that operates through Python scripts. Android users can utilize Pydroid, QPython, or Termux, while iOS users can rely on Pythonista, Carnets, or Juno. However, the creators envision creating a more accessible and user-friendly application in the future. The source code for Snappy is available on GitHub for reference.