Disable Wi-Fi Auto-Connect to Avoid Evil Twin Wi-Fi Phishing
What Is An Evil Twin Attack?
An Evil Twin attach is a form of phishing in which attacker creates a Wi-Fi access point that appears to be a legitimate Wi-Fi network. When users connect to this "evil twin" access point, the data they share with the network passes through a server controlled by the attacker.
Evil Twin Attacks are more common on public wifi networks which are unsafe and leave your personal data vulnerable.
Image by Leo Laporte (CC BY-NC-SA 2.0)
How Can I Avoid the Evil Twin?
SInce the evil twin uses the same network identification (SSID) as a legitimate network it isn't possible to detect before connecting. But you can prevent an evil twin from spoiling your day. US Cybersecurity Magazine recommends:
- Do not connect to open WiFi access points without verifying it as legitimate.
- Disable to auto connect feature and promiscuous mode on all wireless devices.
- Use a Virtual Private Network (VPN) to encapsulate all traffic if using a public access point.
- Ask the establishment for the official name of their hotspot, and any security key if one exists.
- Intentionally type in the wrong key. Some evil twins will grant access to the hotspot no matter what key is entered.
- Avoid public free WiFi access altogether.