Hackers have a new technique for breaking into Wi-Fi networks protected by the aging (and increasingly misnamed) Wireless Equivalent Privacy, reports the BBC and The Register.

The so-called ‘Cafe Latte’ attack aims to retrieve the WEP keys from the PCs of road warriors. The approach concentrates its attack on wireless clients, as opposed to earlier attacks that cracked the key on wireless networks after sniffing a sufficient amount of traffic on a network.

“At its core, the attack uses various behavioral characteristics of the Windows wireless stack along with already known flaws in WEP,” explains Vivek Ramachandran, a security researcher at AirTight Networks, who will demonstrate the approach at the Toorcon hacking conference in San Diego this weekend (19-21 October).

It will demonstrate that it is possible to retrieve the WEP key from an isolated Client - the Client can anywhere - using a new technique called “AP-less WEP Cracking”. WiFiNetNews has more.

Posted by Sam Churchill on Thursday, October 18th, 2007 at 7:27 pm.