{"id":193898,"date":"2010-01-18T10:52:42","date_gmt":"2010-01-18T15:52:42","guid":{"rendered":"Gizmodo-5450926"},"modified":"2010-01-18T10:52:42","modified_gmt":"2010-01-18T15:52:42","slug":"mifi-exploit-shows-gps-position-and-security-settings-for-your-mobile-hotspot-security","status":"publish","type":"post","link":"https:\/\/mereja.media\/index\/193898","title":{"rendered":"MiFi Exploit Shows GPS Position and Security Settings for Your Mobile Hotspot [Security]"},"content":{"rendered":"<p><a rel=\"lytebox\" href=\"http:\/\/cache.gawker.com\/assets\/images\/4\/2010\/01\/mifi.jpg\"><img decoding=\"async\" src=\"http:\/\/cache.gawker.com\/assets\/images\/4\/2010\/01\/500x_mifi.jpg\" class=\"left image500\" width=\"500\" \/><\/a>We&#8217;re fans of <a href=\"http:\/\/gizmodo.com\/5256825\/verizon-mifi-2200-3g-portable-wi+fi-hotspot-review\">Novatel&#8217;s MiFi hotspots<\/a>, which allow a 3G connection to be converted into Wi-Fi. What we are not fans of is a new exploit that lets hackers reveal your location and all your security info.<\/p>\n<p>The exploit, which affects the MiFi 2200s sold by Verizon and Sprint, kicks in when users visit a certain website.<\/p>\n<blockquote>\n<p>&#8220;Among the information the MiFi 2200 will readily share is the WiFi security key \u2013 sent in clear text \u2013 and with some Javascript Baldwin showed it was possible to change the hotspot&#8217;s settings to the point where a factory reset is required in order to restore functionality to the user. Even if GPS is turned off, a remote command can be used to switch it back on.<\/p>\n<p>A further exploit can extract the entire configuration of the MiFi, again in clear text, including all of the security settings.&#8221;<\/p>\n<\/blockquote>\n<p>If you&#8217;re a MiFi user, just be careful out there until Novatel issues a fix. [<a href=\"http:\/\/www.umpcportal.com\/2010\/01\/warning-proven-security-issue-on-mifi-3g-routers\/\">UMPC Portal<\/a> via <a href=\"http:\/\/www.slashgear.com\/novatel-mifi-exploit-reveals-gps-position-security-settings-more-1870255\/\">SlashGear<\/a>]<\/p>\n<p><br clear=\"both\" style=\"clear: both;\"\/><br \/>\n<br clear=\"both\" style=\"clear: both;\"\/><br \/>\n<a href=\"http:\/\/ads.pheedo.com\/click.phdo?s=97c5368136f63809bb884320ebc446a0&#038;p=1\"><img decoding=\"async\" alt=\"\" style=\"border: 0;\" border=\"0\" src=\"http:\/\/ads.pheedo.com\/img.phdo?s=97c5368136f63809bb884320ebc446a0&#038;p=1\"\/><\/a><br \/>\n<img loading=\"lazy\" decoding=\"async\" alt=\"\" height=\"0\" width=\"0\" border=\"0\" style=\"display:none\" src=\"http:\/\/a.rfihub.com\/eus.gif?eui=2226\"\/><\/p>\n<p><a href=\"http:\/\/feedads.g.doubleclick.net\/~a\/Tje8mSsCDQPV4peIk0Y_Nrd1FV0\/0\/da\"><img decoding=\"async\" src=\"http:\/\/feedads.g.doubleclick.net\/~a\/Tje8mSsCDQPV4peIk0Y_Nrd1FV0\/0\/di\" border=\"0\" ismap=\"true\"><\/img><\/a><br \/>\n<a href=\"http:\/\/feedads.g.doubleclick.net\/~a\/Tje8mSsCDQPV4peIk0Y_Nrd1FV0\/1\/da\"><img decoding=\"async\" src=\"http:\/\/feedads.g.doubleclick.net\/~a\/Tje8mSsCDQPV4peIk0Y_Nrd1FV0\/1\/di\" border=\"0\" ismap=\"true\"><\/img><\/a><\/p>\n<div class=\"feedflare\">\n<a href=\"http:\/\/feeds.gawker.com\/~ff\/gizmodo\/full?a=oiSpmC09S9s:cUv9M9IYUCs:H0mrP-F8Qgo\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/gizmodo\/full?d=H0mrP-F8Qgo\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.gawker.com\/~ff\/gizmodo\/full?a=oiSpmC09S9s:cUv9M9IYUCs:yIl2AUoC8zA\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/gizmodo\/full?d=yIl2AUoC8zA\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.gawker.com\/~ff\/gizmodo\/full?a=oiSpmC09S9s:cUv9M9IYUCs:D7DqB2pKExk\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/gizmodo\/full?i=oiSpmC09S9s:cUv9M9IYUCs:D7DqB2pKExk\" border=\"0\"><\/img><\/a> <a href=\"http:\/\/feeds.gawker.com\/~ff\/gizmodo\/full?a=oiSpmC09S9s:cUv9M9IYUCs:V_sGLiPBpWU\"><img decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~ff\/gizmodo\/full?i=oiSpmC09S9s:cUv9M9IYUCs:V_sGLiPBpWU\" border=\"0\"><\/img><\/a>\n<\/div>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"http:\/\/feeds.feedburner.com\/~r\/gizmodo\/full\/~4\/oiSpmC09S9s\" height=\"1\" width=\"1\"\/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>We&#8217;re fans of Novatel&#8217;s MiFi hotspots, which allow a 3G connection to be converted into Wi-Fi. What we are not fans of is a new exploit that lets hackers reveal your location and all your security info. The exploit, which affects the MiFi 2200s sold by Verizon and Sprint, kicks in when users visit a [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7],"tags":[],"class_list":["post-193898","post","type-post","status-publish","format-standard","hentry","category-news"],"_links":{"self":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts\/193898","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/comments?post=193898"}],"version-history":[{"count":0,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/posts\/193898\/revisions"}],"wp:attachment":[{"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/media?parent=193898"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/categories?post=193898"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mereja.media\/index\/wp-json\/wp\/v2\/tags?post=193898"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}