Micro-segmentation and air-gapping are architectures put in place to stop the propagation of malware within the enterprise. While this is a solution that works for wired networks, it is rendered useless in face of wireless networks. The reason is that a wireless device on one segment is also open to receiving and sending wireless communications, while it is connected to the wired networks.
An attacker can exploit these wireless devices to wirelessly hop from one segment to another. The infamous Emotet malware was known to include such wireless propagation techniques.
With the number of today’s connected devices and the ease of turning on and off the wireless capability, security teams have no way of knowing whether their devices are also communicating wirelessly without continuously monitoring their airspace.
Achieve network airspace control and protection and prevent segmentation hopping via wireless networks with AirEye Dome:
Prevent any unauthorized wireless access to a dual-connected device
Receive visibility into devices that are broadcasting Wi-Fi Direct, Mobile Hotspot and AWDL, pinpointing all devices connected via those technologies
Receive visibility into devices that are using File Sharing, AirDrop, Feem and Media Streaming, pinpointing all their peer devices
Pinpoint WPS-enabled networks
Detect wireless hotspots operated by authorized and unauthorized users
Protect against FragAttacks
Prevent wireless-spreading malware attacks such as Emotet