Details on the vulnerability remain somewhat fuzzy, but the Wi-Fi Alliance says Hole 196 appears to be a wireless version of ARP spoofing, the exploit in Address Resolution Protocol that allows hackers to perpetrate man-in-the-middle attacks.

Matthew Gast, chairman of the Wi-Fi Alliance’s Security Task Group (and director of product management for Aerohive Networks), said Hole 196 is an exploit that only authorized network users can use to bypass WPA2 encryption.

An insider on the network can set up a hack to trick a client into perceiving the hacker’s client devices as an access point. The victim will send its data to the hacker, who can observe it while forwarding it on to the access point.

“Since this is a vulnerability that’s been around since the beginning of Ethernet, network admins are already accustomed to dealing with it,” Gast said.

Gast said network performance monitoring can detect the latency caused by the extra hops associated with the attack.  Also, network admins can enable the client isolation filter found on most LAN infrastructure, which won’t be fooled by an ARP spoofing attack. An AP will look directly at the destination MAC address, recognize the problem and cut the connection. The victim’s client device will immediately experience a loss of connectivity. The user will call help desk and it’s only a matter of time before a network admin tracks down the MAC address of the hacker.

Had I watched this video when I forgot the keys to my Kensington MicroSaver Alarmed Computer Lock — generously given by CableOrganizer.com for review — I might have saved myself from disassembling an office desk with a screwdriver. Let me explain…

The laptop locking gaffe

Being a remote worker left little opportunity for me to truly test the Kensington MicroSaver Alarmed Computer Lock. Sure, I could see how my laptop looked chained to my home office desk, but that wouldn’t have made for a very exciting blog post.

Shortly after I received the lock in the mail, did I coincidentally take a trip from the U.S. to the U.K. to put it to the test. Packing proved that the wire of the Kensington lock is not very flexible; you have to really work at coiling it up to fit it in small spaces. For those traveling, I’d recommend either not fitting it in small places or quickly wrapping it up with a few twist ties before it springs back on you.

***

When I set foot in the U.K. office, I was given the go-ahead to occupy the desk of a man who was absent. I started a file transfer over my corporate VPN towards the end of that day, in what seemed like minutes before my ride back to the hotel rushed into the room demanding I leave now.

“I can’t go,” I said.

They scratched their head.

“My progress bar says there are two more hours left for this file to transfer, and I need this downloaded before tomorrow morning,” I explained.

They clearly weren’t going to wait for me.

“Could I leave my laptop here?” I pleaded.

That was fine with them, and just as well for me since it gave me the chance to legitimately test my Kensington lock for review. I threaded the lock between a leg panel and table top — half-hoping the late-working employees or maintenance men would try to take it over night. Would anyone tamper with it? Would I hear the alarm sounding outside the brick walls of the building the next morning?

***

When I arrived the next day, it’s what I didn’t find that started the panic. I walked into the office to find the desk already occupied. The man (who didn’t know I was borrowing his space) was already working at his desk next to my laptop, which was locked to his table. Imagine my face when I obligingly went to his desk to remove my laptop only to realize I had left the keys miles away at my hotel!

After some debate, and nervous laughter on my part, one employee said we should take the desk apart. It was a three-man operation: One person did the unscrewing; another held the desk panel as it fell; another held the table top so that it, too, wouldn’t fall. Once the bolts were unscrewed, the man under the desk un-looped the lock from its offending location, and back together the desk went.

Attempting to pick a Kensington lock

It wasn’t until I returned to the states weeks later that I discovered the video. I had to try hacking it of course, but the lock wouldn’t open. I blamed it on having an inferior toilet paper roll (if there is such a thing), or my lack of utility tape. I first tried with scotch tape, then started over using duck tape. Every time I attempted to pick the Kensington lock, I ended up with a mutilated piece of cardboard (shown right).

Maybe the Kensington MicroSaver Alarmed Computer Lock has better security than the one in the YouTube video — or maybe I lack the lock-picking finesse of the demonstrator. Either way, it brought me to a broader conclusion of laptop security.

Secure laptops like you would your network

A security expert once told me there’s no such thing as perfectly secure data. If you wanted zero risk of data being stolen, you would have to keep your data off networks altogether. Network security offers prevention and protection methods — but they won’t be 100% safe.

That’s why security needs to come in layers. Enterprise network security expert Michael Gregg explains the concept of network security defense in depth in this expert response. Just as your network can’t have only a firewall, or only anti-virus, your laptops need defense in depth to slow down corporate crackers. Password protect laptops; add laptop tracking software; figure out stolen laptop recovery if it ever gets that far.

CableOrganizer.com talked about seven ways to prevent computer and data theft by using all of these physical computer security products:

1. a USB port block
2. a laptop lock
3. a USB fingerprint reader
4. a notebook privacy filter
5. an anti theft PC security stand
6. a laptop lockbox
7. a CPU security cabinet

While not each and every security product is likely needed for every laptop — the idea of securing in layers is essential to any network, laptop or mobile device.

Ali Ashtari, 43, a computer and hi-tech equipment buyer for Iran’s defence industry and nuclear programme, was hanged after admitting he worked for Israel. It is the first known conviction of an alleged Israeli agent in Iran for almost 10 years. …

Behind their backs he allowed the software he bought to be subtly doctored by Israeli computer engineers before it was imported to Iran. Ashtari confessed: “Mossad’s goal was to sell specialised computer equipment through me to Iranian intelligence organisations.”

The case echoes the FBI’s warning not too long ago about Cisco knockoffs as potential Trojan horses, but this time, the threat was apparently real — or at least real enough for Iran to take action.

Corporate espionage is a very real threat, as Intel found out recently, but people aren’t generally executed for it.

As for me? I’ll stick with the IT spying antics of Chuck — a little less realistic, perhaps, but fewer people end up getting killed. In this clip, Chuck and company use social engineering techniques — one of network security’s weakest points — to infiltrate the opposition.

Further Reading:

• IT expert executed in Iran: More commentary at Zero Day.
• SearchNetworking.com’s Security homepage: For all your security needs.
• OSI: Securing the Stack, Layer 8 — Social engineering and security policy: More on social engineering security from our all-in-one guide.

This how-to book not only gives you real-world scenarios you’ll actually be able to relate to, but the materials you’ll need to create your own test lab: It comes with a CD-ROM featuring security and hacking tools as well as open source tools, demo software, and a bootable version of Linux.

As security should never be last on the network administrator’s task list — we want to give our readers an opportunity to win this book for free. We have 10 copies of Michael Gregg’s book to give away to IT professionals in the United States. (Sorry, we cannot ship books outside the country.) Just go to our Build Your Own Security Lab giveaway two-question survey, and tell us if you’ve ethically hacked your network. Submitting your response will enter your name into our random drawing which will be held on November 1st. This means you have until the end of October to submit your entry.

If you miss your chance to enter, or don’t win a copy — never fear! You can still download Chapter 9 of Build Your Own Security Lab, Securing Wireless Systems — which starts you off with basic wireless know-how and goes on to explain how to ethically hack and secure your wireless systems with various networking tools. Since we all live different lifestyles, this chapter is downloadable as a PDF or as a podcast for when you’re on the go.

Do you like this offer? Let us know — or feel free to suggest any other books you’re on the lookout for that we could help you get for free.