Last week AirTight presented the first Webinar designed to educate network administrators and security professionals about the wireless risk introduced with Windows 7. The response was so overwhelming that we are presenting it live again on March 10. I guess we hit a nerve since AirMagnet is bringing up the rear now and presenting a Webinar on the subject. But if you want an in depth look at this topic and solid advice on protecting your network, join AirTight experts for a live encore presentation of our webinar:
Windows 7 – a New Enterprise Wireless Risk

When: Wednesday 10 March 2010, 10:45 AM – 12:00 PM
Time Zone: (GMT-08:00) Pacific Time (US and Canada); Tijuana
Read more…

Della Lowe Windows 7, Wireless security AirMagnet, Rogue AP, WiFi access point, Windows 7 Webinar, Wireless security

Skyjacking vulnerability which allows Cisco LAP to be diverted to connect to rogue controller by manipulating OTAP could be more dangerous than what has been clarified by Cisco in its advisory. The advisory says that “An exploit could prevent the device from functioning properly, resulting in a DoS condition. There is no risk of data loss or interception by the rogue access point or Wireless LAN Controller.”

As a matter of fact, it should be possible to convert Authorized Cisco LAP into a wired rogue AP using skyjacking. After Cisco LAP is trapped into skyjacking (for example, made to connect to a controller hosted on the net), it is possible to convert it to Cisco REAP mode and make it bridge traffic locally between Enterprise wired subnet and wireless.

Just a thought – won’t blocking LWAPP discovery port on enterprise firewall protect you from this threat?

Stay tuned for more updates as we dig deeper into this.

Pravin Bhagwat Best practices, Wireless security AirMagnet, Cisco, LAP, LWAPP, OTAP, Rogue, RRM, skyjacking