Cisco APs at risk from SkyJack attack


Cisco APs at risk from SkyJack attack

Cliff Saran

Businesses using Cisco's Over-the-Air-Provisioning (OTAP) may be at risk of a hacking attack which targets access points to gain control of a corporate networks.

The potential exploit, dubbed SkyJack by wireless security firm AirMagnet, creates a situation whereby control of a Cisco access point can be obtained, whether intentionally or unintentionally, to gain access to a business' wireless Lan.

The Cisco OTAP feature allows a Cisco access point that is not connected to a Cisco controller to listen to traffic from other nearby Cisco access points and use that information to quickly locate a nearby wireless Lan controller to associate to.

According to AirMagnet, first, there is an unintentional exposure or leakage of information in all lightweight Cisco access points. Second, while the OTAP feature is enabled, there is the potential for access points to be incorrectly assigned to an outside Cisco controller either by accident or at the direction of a potential hacker.

AirMagnet recommended that Cisco customers stop using the OTAP feature, as it could actively put new sensors in danger of being attacked.

At the time of writing, Cisco could not confirm the issue identified by AirMagnet.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy