Detailedseverity: LowDraft
CAPEC-613WiFi SSID Tracking
Abstraction
Detailed
Status
Draft
Severity
Low
Description
In this attack scenario, the attacker passively listens for WiFi management frame messages containing the Service Set Identifier (SSID) for the WiFi network. These messages are frequently transmitted by WiFi access points (e.g., the retransmission device) as well as by clients that are accessing the network (e.g., the handset/mobile device). Once the attacker is able to associate an SSID with a particular user or set of users (for example, when attending a public event), the attacker can then scan for this SSID to track that user in the future.
Related weaknesses· 2
Related attack patterns· 1
Exploits2
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Weakness | Insertion of Sensitive Information Into Sent Datacwe-201 | 100% | live |
| Weakness | Channel Accessible by Non-Endpointcwe-300 | 100% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.