Earlier this year, a coworker told me about a strange vision. In a moment of fantastic reverie, she told me that she saw all of her Gchat conversations trailing behind her everywhere she walked, visible for anyone to see.
I shuddered. The idea nearly gave me a panic attack.
But perhaps it was divine guidance. It’s actually really easy to hack into someone’s email account over public Wi-Fi networks, as researchers from security company F-Secure demonstrated last week. It was so easy to take advantage of people, in fact, that the same researchers were able to get some people to sign over their first born children just in order to go online.
In order to show just how gullible we all are, F-Secure asked technologist Finn Steglich to build a mobile, public Wi-Fi hotspot (which he did, with freaking rubber bands) that allowed him to watch data flowing through the network. The information included email addresses and account passwords, all readily available for Steglich to snatch. They set up the trap in Canary Wharf, London’s financial center, and then directly in front of the Houses of Parliament, where they started collecting free data from unsuspecting passersby.
In total, 33 people signed onto the network. But six also signed over their first born children. At the experiment’s first location, F-Secure made a terms and conditions page that users checked off before they logged on. It stipulated that “in return for free wi-fi access the recipient agrees to assign their first born child to us for the duration of eternity.” Or a favorite pet, if the kid wasn’t available.
h/t IEEE Spectrum