How It Really Happened: “Enemy at the Gate”

Enemy at the Gate

Security Topic: Evil Twin Attack

NINJIO Season 11: Episode 02
Emotional Susceptibility: Opportunity

An “evil twin” attack is a public Wi-Fi scam where a hacker sets up a fake hotspot in places like hotels or airports to trick people into connecting. Once on the counterfeit network, victims can have data stolen or sessions hijacked. This episode shows how these attacks work, why they’re dangerous, and practical ways to stay safe. Starring Jay Preston as Nico.

Teachable Takeaways

• An “evil twin” is a look-alike hotspot run by a bad actor. It can intercept traffic and trick you into entering credentials via fake portals or reverse-proxy logins.
• Bad actors use evil twin attacks to reuse your session and access accounts posing as you, even if MFA was used.
• Whenever possible, use trusted Wi-Fi or a personal hotspot. If you must use public Wi-Fi, use a trusted VPN and only log into sites with valid HTTPS.
• If something seems off, you should disconnect, sign out of all sessions and devices, change passwords, and notify IT immediately.

Additional Reading

• BitM Up! Session Stealing in Seconds Using the Browser-in-the-Middle Technique – Google Cloud
• NordVPN’s new tool protects you from the ‘session hijacking’ vulnerability you never knew you had – Techradar
• WebAuthn, passwordless and FIDO2 explained: Fundamental components of a passwordless architecture – CISCO Duo
• Evil Twin WiFi Attack: A Step-By-Step Guide – StationX
• Traveling? ‘Evil Twin’ WiFi networks can steal crypto passwords – Coin Telegraph
• Saily: The Risks of In-Flight Wi-Fi and ‘Evil Twin’ Attacks – Cyber Magazine

About NINJIO

NINJIO’s human risk management platform reduces cybersecurity risk through personalized security coaching, engaging awareness training, and adaptive testing. Our multi-pronged approach to risk mitigation focuses on the latest attack vectors to build employee knowledge and the behavioral science behind social engineering to sharpen users’ intuition. Our simulated phishing and coaching tools build a proprietary Emotional Susceptibility Profile for each user to identify their specific social engineering vulnerabilities and change behavior. For more information: www.ninjio.com.