Credential Harvesting

Attack involving obtained or compromising user credentials. Not strictly a wireless vulnerability, but can be achieved by impersonating a wireless AP or captive portal to convince a user to enter their credentials. Tools like Ettercap can spoof DNS replies to divert victims to fake websites on a local system.

Last updated 1 month ago