The client is an international bank with total assets of USD 500 million. The bank offers a full range of banking services for private and corporate clients.
Our team was tasked with conducting a wireless network penetration test for an international financial institution that needed to verify the design and implementation of the network.
# CLIENT REQUIREMENTS
Our team received the task:
to conduct a wireless network penetration test for an international financial institution that needed to verify the design and implementation of the network.
WHAT WE DID
THE "EVIL TWIN ATTACK" PROCESS
The client had carefully designed the network to provide separate access for employees and guests. The guest network was found to be physically separated from the company's global network. However, the employees' wireless clients were configured with certain flaws, which made our attempts to attack the network completely successful.
WIFI penetration test algorithm:
WIFI hacking scenario:
By executing a twin attack, we were quickly able to penetrate the network through corporate WiFi. Since the wireless network was using RADIUS authentication with AD credentials, a successful handshake interception was enough to gain initial access to the network and an account in the office domain. Provided that the customer did not use any wireless scanning tools, the Evil Twin AP remained undetected for an extended period of time.
After demonstrating the system's weaknesses and the corresponding privacy risks, we recommended changing the encryption to mimic a legitimate AP to reject networks without proper SSID and authentication settings, and helped implement security remediation measures.