Thursday, 27 August 2015

AT & T Hotspots Inject Ads Into Wi-Fi Traffic

Hotspots of US telco AT & T inject ads into the Wi-Fi traffic from users, so has researcher Jonathan Mayer discovered. Mayer was recently at Dulles airport and made ​​to connect to a hotspot free of AT & T.

The websites he had visited suddenly all sorts of ads in locations where they do not belong. It was not long before Mayer discovered that the wifi hotspot AT & T HTTP traffic manipulated. The telecom provider uses an ad-injection platform developed by a startup called RaGaPa. When an HTML page is loaded over HTTP are made three changes.

If the ad is inserted, and a second advertisement as a backup in case the browser does not support JavaScript. Finally scripts are added for loading and displaying the ads. By injecting advertisements users of the browsing behavior will be exposed to unknown and unreliable companies, writes the researcher.

In addition, also affected the names and content of enterprises, because the ads appear on various websites that normally show ads. It is also not clear that the ads come from the hotspot. Furthermore, it introduces security risks, says Mayer. He calls AT & T also to stop. Furthermore it shows, according to the researcher that it is important that websites are accessible only over HTTPS, since no ads will be injected into the circulation.

No comments:

Post a Comment