WiFi Security Background Check for Android

Hi Christopher McBride,

The Wifi Security checks your Wi-Fi connection for network-based threats.

Sophos Mobile Security detects the following issues:

1. ARP spoofing: ARP spoofing is where an attacker sends malicious Address Resolution Protocol (ARP) messages to your computer, making it believe the attacker’s MAC address is associated with the IP address of your network gateway. This allows them to access your private network, steal sensitive data, and launch additional attacks like denial-of-service or man-in-the-middle attacks.
2. Captive portal: Captive portal is a way for public Wi-Fi networks to ask for authentication before granting access to the network. Because all traffic is redirected to the captive portal, Sophos Mobile Security might show additional warnings.
3. Content manipulation: Content manipulation is where an attacker manipulates a website’s content to force you to do harmful actions. This allows them to do such things as bypass authentication or delete data.
4. SSL interception: SSL interception is where an attacker uses a false server certificate to intercept the secured connection between your computer and a website. The attacker can decrypt sensitive data while letting you believe your connection is still secure.
5. SSL stripping: SSL stripping is where an attacker downgrades the connection to a website from secure HTTPS to insecure HTTP. The attacker can redirect all traffic between your computer and the website via their own proxy server. This allows them to decrypt sensitive data while letting you believe you’re still connected via HTTPS.

You also do have the option to set it automatically scan in Background whenever you connect to a wifi network or manually do it as per your requirement. 

Hi Christopher McBride,

The Wifi Security checks your Wi-Fi connection for network-based threats.

Sophos Mobile Security detects the following issues:

1. ARP spoofing: ARP spoofing is where an attacker sends malicious Address Resolution Protocol (ARP) messages to your computer, making it believe the attacker’s MAC address is associated with the IP address of your network gateway. This allows them to access your private network, steal sensitive data, and launch additional attacks like denial-of-service or man-in-the-middle attacks.
2. Captive portal: Captive portal is a way for public Wi-Fi networks to ask for authentication before granting access to the network. Because all traffic is redirected to the captive portal, Sophos Mobile Security might show additional warnings.
3. Content manipulation: Content manipulation is where an attacker manipulates a website’s content to force you to do harmful actions. This allows them to do such things as bypass authentication or delete data.
4. SSL interception: SSL interception is where an attacker uses a false server certificate to intercept the secured connection between your computer and a website. The attacker can decrypt sensitive data while letting you believe your connection is still secure.
5. SSL stripping: SSL stripping is where an attacker downgrades the connection to a website from secure HTTPS to insecure HTTP. The attacker can redirect all traffic between your computer and the website via their own proxy server. This allows them to decrypt sensitive data while letting you believe you’re still connected via HTTPS.

You also do have the option to set it automatically scan in Background whenever you connect to a wifi network or manually do it as per your requirement.