Multiple WIFI attacks, then malicious AP detected
About two weeks ago I started to get notified that Fingbox (2.0) had detected an attack on my access point. It is an Apple time capsule and not the only AP on my network so I disabled it for a day. A few days after being reenabled, same thing. Disabled it again overnight and another couple of days and the notifications start up again and became more frequent. I left it for a while, and the notification now happens every couple of minutes. After a while I get a new notification about a ‘new or malicious AP’ and an option to ‘Trust’ it.
The BSSID is completely different to my AP and matches a hidden network in my area. The BSSID of the hidden network is a close variant of 2 other visible AP in my area, their SSID suggests its an ISP provided router.
How can I find more information about the attack that is being detected?
Under what conditions would Fingbox determine that a nearby, unassociated AP is part of MY network if I have never attempted to connect to it before?
Below are screenshots of the hidden and visible AP details from Digital Fence, its relevant.
Any ideas? Cheers.
- 5.8K All Categories
- 2.8K Ask about Connected Technology
- How To...
- 1.1K Devices & Security
- 1.6K Network Troubleshooting & Connectivity
- 114 General Discussion, Weird & Wonderful
- 45 Network Infrastructure
- 5.4K Ask about Fing
- 545 Fing Account Change Request
- 1.1K Fing Desktop
- 1.4K Fing App
- 1.7K Fingbox
- 534 Announcements, Beta Testing & Release Notes
- 158 Community Updates
- 29 Getting started
- 13 Community User Guides