Read the whole article. Bottom line. He uses a device which creates a network that people can log into and he can name it whatever he wants to so if you’re at a Starbucks and the network name is “Starbucks” but you see another network with a name like “Starbuckz” you better know which one is the correct one because if you log into the hacker’s network he can see all the data that our device is receiving and sending including your passwords. Clever little trick and simple but effective.
Sounds like a form of “spoofing” to me.
Who sends passwords in clear text?
Sounds like a Man in the Middle attack as well.
Actually, it is far more insidious. While he clones the nearby hotspot (same name and credentials) he also listens for attempts to connect to known networks which were not secured. Been to Disney World? Open WiFi ports there, and it just appeared in downtown Phoenix. Betcha a whole bunch of phones, laptops and computers will connect, and start sending data through the network. Some DNS spoofing, and you credit union app likely just shared your account credentials.
Clear any unsecured hotspots from your connection list (Vons, Statbucks, Hilton..) as soon as you are done with them. And if you frequent such hotspots, absolutely look into and use a VPN tunnel to a secure computer to act as your gatekeeper (and obscure your data from sniffing at the hotspot.)
Just imagine if this technology was used against Obama protesters by a liberal hacker -they might find out your Facebook account, where you work, your church.. They could cause pronlems, maybe lie to your boss, insert child porn and report you for harassing children.
Really makes you think.
Wifi spoofing, he creates Starbucks with the same password and a far stronger signal on a different band. Then jam the real Starbucks band. Every laptop will automatically lock to the clear signal and relog.