SPR Immune to MACStealer
What is the Attack
Most Secure WiFi networks have flaws that allow attackers to bypass station isolation
By spoofing a victim's MAC address, attackers can communicate to victim stations across security boundaries or intercept traffic. They can receive or transmit queued packets to/from the victim.
WHICH SETUPS ARE AFFECTED?
- Guest Networks
- Multi-PSK / Multi-Passphrase Setups
- WPA-EAP Environments (Enterprise 802.1X)
- Hotspots
SUPERNETWORKS SPR PROVIDES FULL DEFENSE
- MAC spoofing during authentication is not possible without knowing a victim station's password
- SPR places each device into an individual VLAN, fully segregating traffic between devices
- Strict firewall rules further prevent spoofed IP or MAC addresses from authenticated WiFi stations
WHAT IS A SUPERNETWORK?
- A supernetwork is a type of overlay network that allows multiple smaller networks to be connected together
- SPR places each device into its own isolated network, and then uses firewall rules to securely connect devices together again
- Find out more at https://www.supernetworks.org
