Nearest Neighbor Attack
On Nov. 22, 2024 Volexity posted about a new attack they discovered – the nearest neighbor attack. It's a fascinating read. The attacker obtained passwords for the target but the public facing services were all protect by MFA so they couldn't get in. However, the target's WiFi wasn't protected by MFA and the compromised passwords would work. But how does an attacker from the other side of the world access the target's WiFi network? Well, they breach neighboring companies and look for a computer that is connected via Ethernet but also has a WiFi card that can be used to connect to the primary target's WiFi! No more treating WiFi like the only way it can be abused is by someone physically nearby.