WIFI Malware Using Geolocator...

AndyRH · Aug 25, 2023, 5:51 PM

@NollipfSense said in WIFI Malware Using Geolocator...:

https://www.bleepingcomputer.com/news/security/new-whiffy-recon-malware-uses-wifi-to-triangulate-your-location/

I may have to change my SSIDs, but I am not sure it would help with so many near me.

https://support.google.com/maps/answer/1725632?hl=en#zippy=%2Chow-do-i-opt-my-access-point-out-of-google-location-services

NollipfSense · Aug 26, 2023, 5:11 PM

@AndyRH said in WIFI Malware Using Geolocator...:

@NollipfSense said in WIFI Malware Using Geolocator...:

https://www.bleepingcomputer.com/news/security/new-whiffy-recon-malware-uses-wifi-to-triangulate-your-location/

I may have to change my SSIDs, but I am not sure it would help with so many near me.

https://support.google.com/maps/answer/1725632?hl=en#zippy=%2Chow-do-i-opt-my-access-point-out-of-google-location-services

Yes, I changing mine also...

johnpoz · Aug 26, 2023, 5:50 PM

@NollipfSense if you have some device infected with this - not how you think changing your ssid, or opting out of google location services have any effect or do anything.

NollipfSense · Aug 26, 2023, 10:32 PM

@johnpoz said in WIFI Malware Using Geolocator...:

@NollipfSense if you have some device infected with this - not how you think changing your ssid, or opting out of google location services have any effect or do anything.

No John...just thought to change it to add the _nomap...never one to trust Google.

AndyRH · Aug 26, 2023, 10:49 PM

@johnpoz Also to reduce the effectiveness of the malware.

johnpoz · Aug 26, 2023, 11:05 PM

@AndyRH said in WIFI Malware Using Geolocator...:

Also to reduce the effectiveness of the malware.

Sure ok ;) If you think 1 out of what, how many wifi networks are in your neighborhood?

Here is one site were you can lookup such info, they recently hit a billion!

AndyRH · Aug 26, 2023, 11:07 PM

I get your point. If I did not live within range of about 20 SSIDs I would consider it. If I lived in the country I would.

provels · Aug 27, 2023, 4:04 PM

I may be lacking imagination, or just dim, but what does this get the hacker? Just if someone's running open or WEP? And what does Google even gain from providing this service?

AndyRH · Aug 27, 2023, 5:22 PM

@provels It can give a hacker a physical location. This added to a name allows the scam to include a threat with a location increasing the odds of success. If the "police" call and say they are coming to 123 Any Street to pick up Bob unless you pay the fine now over the phone, it adds to the credibility.
I have had the I.R.S. call with the correct name and say I owe them money and I have to arrange payment now. Since I happen to know a phone call is NOT legal notice, I spend time with them, but I never tell them that little fact or that the I.R.S. never refers to themselves as I.R.S. Adding location will frighten people into giving up information they would not normally give.

Also, I think this is a low probability attack.

NollipfSense · Aug 27, 2023, 5:33 PM

@provels said in WIFI Malware Using Geolocator...:

what does this get the hacker?

Maybe just to know the GPS info of where this WIFI lives...if the hacker lives aboard, maybe it's an invitation to visit...

@provels said in WIFI Malware Using Geolocator...:

what does Google even gain from providing this service?

More info about a potential revenue source for Google to craft and perfect their approach to extracting wealth from client's pocket to fatten their shareholders. Remember, Google is in the business of extracting wealth through behavior modification of those who use its services.