Flaw in Popular Wireless Standard
Saw this over at SNN
The proliferation of wireless networking has made a field day for would-be hackers. Most entities secure their wired connections to the Internet using firewalls and strong authentication methods, but intruders can easily bypass those mechanisms by scanning for and hijacking wireless LAN connections. Wireless security has always been considered weak, some with fixed encryption keys, or no encryption at all. Coupled with no access control to the wireless LAN outside the limits of corporate physical security and you essentially have an open door to your LAN. Shortcomings in the 802.11 spec leave key management completely up to the vendor, allowing for no industry standard to be established. The wireless security mechanisms in 802.11 are all vulnerable to sniffing and spoofing attacks rendering them effectively useless.