Chameleon WiFi Virus Spreads Like a Cold
News | Threats

Chameleon WiFi Virus Spreads Like a Cold

Posted: March 6, 2014 by Joshua Cannell

A team of researchers at the University of Liverpool developed a virus dubbed Chameleon that travels over WiFi networks and spreads “as efficiently as the common cold spreads between humans.”

Unlike most viruses, Chameleon doesn’t go after computers or internet resources, but focuses on access points (APs), or where you connect to the internet.

For the average home user, this is usually a wireless router.

The research team says the virus spreads fast, avoiding detection and identifying “the points at which WiFi access is least protected by encryption and passwords.” If the virus hits a roadblock when trying to propagate, it simply looks for other access points “which weren’t strongly protected including open access WiFi points common in locations such as coffee shops and airports.”

There hasn’t been many technical details released on the virus, but it’s not unheard of for an AP to become infected; a few weeks ago, in fact, reports surfaced that several thousand Linksys routers had become infected with a worm likely installed by a vulnerability found in the firmware.

“When Chameleon attacked an AP it didn’t affect how it worked, but was able to collect and report the credentials of all other WiFi users who connected to it”, said Alan Marshall, Professor of Network Security at the University.

It’s unfortunate that very few routers today have adequate anti-virus protection, if they have any at all. In addition, many consumers don’t ever change the default username and password on their routers, making it dreadfully susceptible to hijacking.

Here are some measures you can take to protect yourself from these types of threats:

  • Change the default username and password on your home router
  • Ensure your WiFi network is password protected with a strong password
  • Avoid weaker wireless authentication protocols like WEP
  • Don’t broadcast your network’s name (SSID)
  • Avoid public networks and WiFi hotspots
  • Consider MAC address filtering to control which devices connect to your network

_________________________________________________________________ Joshua Cannell is a Malware Intelligence Analyst at Malwarebytes where he performs research and malware analysis. Twitter: @joshcannell

RELATED ARTICLES

Fishing in a lake
Cybercrime

Law enforcement reels in phishing-as-a-service whopper

April 18, 2024 - A major international law enforcement effort has disrupted the notorious LabHost phishing-as-a-service platform.

CONTINUE READING 0 Comments
Cerebral logo
News | Privacy

Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million

April 18, 2024 - The Federal Trade Commission (FTC) has reached a settlement with online mental health services company Cerebral after the company was charged with failing to secure and protect sensitive health data.

CONTINUE READING 0 Comments
JuicyFields investment scam
News | Scams

Cannabis investment scam JuicyFields ends in 9 arrests

April 18, 2024 - JuicyFields was an investment scam that urged victims to invest in cannabis production.

CONTINUE READING 0 Comments
A mobile phone in the hands of a young woman in a dark colored t-shirt.
Privacy

Should you share your location with your partner?

April 17, 2024 - Location sharing is popular among couples. But is it something you want in your own relationship?

CONTINUE READING 0 Comments
Giant Tiger logo
News | Personal

Giant Tiger breach sees 2.8 million records leaked

April 16, 2024 - A threat actor claims to be in possession of 2.8 million records originating from a hack at Canadian retail chain Giant Tiger

CONTINUE READING 0 Comments

ABOUT THE AUTHOR

Joshua Cannell

Joshua Cannell

Malware Intelligence Analyst

Gathers threat intelligence and reverse engineers malware like a boss.

Contributors icon

Contributors

Threat Center icon

Threat Center

Podcasts icon

Podcast

Glossary icon

Glossary

Scams icon

Scams