Overall Distribution of WiFi security

• 57% of WiFi networks are either OPEN or using weak (WEP) encryption

• Enterprise grade APs were found configured in WEP mode instead of WPA or WPA2
  • 39% of threat posing APs (OPEN and WEP) are enterprise grade
• 27% of open APs (non hotspot and non guest) were hiding their SSIDs

• 61% of threat posing (OPEN and WEP) APs are home/SOHO grade
  • Such devices are operating beyond IT/Security group’s visibility and control
  • Authorized client devices can connect and bypass security controls

• 13% of mobile WiFi clients were found operating in ad hoc mode
  • Actively looking to connect to viral networks such as "Free Public WiFi" &  "Free Internet Access"
  • Vulnerable to wi-phishing or honeypotting

• Personal data of finance executives leaking over the air

Financial Districts Airspace Reveals Wi-Fi Security Risks

Regulations Daily, 05/26/2009

Key Findings Demonstrate a Pattern of Wireless Data Leakage and Poor Security Practices in Six U.S. Cities and London

Sarbanes-Oxley Compliance Journal, 05/26/2009

Financial Districts Riddled with Wireless Vulnerabilities

Search Security, Marcia Savage, 5/19/2009

AirTight Reveals Wi-Fi Security Risks for Airspace

Raju Shanbhag, TMCnet, 05/15/2009

Airtight Study of Financial districts Reveals WiFi Security Risks

PIN Payments Blog, John Frank, 5/14/2009

Who Put the G in GRC?

IT Knowledge Exchange, David Schneier, 5/14/2009

Study reveals lack of financial wireless computer security

Marcia Savage, Features Editor, Information Security magazine, 05/14/2009

Financial and business Wi-Fi easy to crack or non-existent

Steve Ragan, 05/14/2009

Financial districts a wireless hacker's paradise

Security Focus, 05/13/2009