FBI warns travellers to beware attacks via hotel Wi-Fi
By Stewart Mitchell
Posted on 9 May 2012 at 09:37
Hackers are targeting foreigners' laptops using hotel Wi-Fi, the Internet Crime Complaint Centre and FBI have warned.
According to an intelligence note from IC3, the malware is spread via pop-up windows during login, with the code download disguised as a legitimate software update.
“Analysis from the FBI and other government agencies demonstrates that malicious actors are targeting travellers abroad through pop-up windows while establishing an internet connection in their hotel rooms,” the IC3 said.
Checking the author or digital certificate of any prompted update to see if it corresponds to the software vendor may reveal an attempted attack
“In these instances ... the pop-up window appeared to be offering a routine update to a legitimate software product for which updates are frequently available. If the user clicked to accept and install the update, malicious software was installed on the laptop.”
The officials didn't explain what the malware actually did, but the FBI warned that anyone travelling overseas, and particularly on governmental or private-sector business, should take extra care when abroad and plan a pre-departure update schedule.
“Checking the author or digital certificate of any prompted update to see if it corresponds to the software vendor may reveal an attempted attack,” the note said.
“The FBI also recommends that travellers perform software updates on laptops immediately before travelling, and that they download software updates directly from the software vendor’s website if updates are necessary while abroad.”
what am I bet...
that the 'legitimate software product for which updates are frequently available' is Flash? Yet another reason to hate the bloody thing.
By Noghar on 9 May 2012
bit of a leap to make that conclusion. there are other apps that update from time to time...
By sihaz2 on 9 May 2012
- Adobe Dreamweaver CC review: first look
- Huawei Ascend P6 review: first look
- Adobe Illustrator CC review: first look
- Let MPs tell us what they really want ISPs to block
- Adobe Photoshop CC review: first look
- WWDC 2013 and iOS 7 launch: live blog
- Sony VAIO Pro review: first look
- Want child porn blocked? Meet the IWF
- Is it worth upgrading a media centre to Windows 8?
- Flickr redesign: is it enough to tempt photographers back?
- Google two-step verification: a must for business email
- Yes, I write down my passwords
- How to deal with a ransomware attack
- How secure is your Wi-Fi network?
- How QR codes caught out the security pros
- Why I do not trust Do Not Track... yet
- The hard disks you can "secure" with a single-digit password
- Why I've started using a password manager
- Time to kill off CAPTCHA
- Are today's young people Generation I (for insecure)?