Rogue access point and evil twin are 2 types of wireless threats.
Rogue access point poses a threat to private wireless networks, while evil twin victims are the end-users of free public Wifi.
Rogue Access Point
thieves drilling holes in an oil pipe and stealing oil
Now looking at this pipe we can assume that at one end of the pipe we definitely will be having a control measure, a valve, or a faucet of any kind.
The moment these holes are drilled in the pipe by the thieves (employees of a large business in Mexico), the control measure is no longer in charge of the flow of oil.
Rogue access is a lot like stealing from the main pipeline of oil. A rogue access point is plugged into a network in an unauthorized way or even set up due to a naive user’s ignorance. IT personnel deliberately install a rogue access point for testing purposes. It poses a serious threat to a network. How you may ask.
One → A rogue access point provides a wireless backdoor to the network to outsiders.
Two → It bypasses the security firewalls and other security devices and opens the network leaving it vulnerable to attacks.
Evil Twin
An evil twin is a rogue wireless access point posing to be a legitimate WIFI access point. Any internet-capable device can be used to create an evil twin. Evil Twin software is easily available on the net. How does this work?
An attacker positions himself in the vicinity of legitimate wifi to find a “good twin”, finds out the SSID (name of the wireless network). The attacker then sends out his own signal with the same name, and the frequency posing to be a legitimate access point. And guess what… we connect to their WIFI.
Evil twin established.
Now it can be configured to allow the traffic to pass through the legitimate access point while it is monitoring the user activity (victim), still, the evil twin might pose as a hotspot to which a user could connect and get monitored unknowingly. Either way, IT IS BAD
So, the next time you connect to a public WiFi refrain from any other activity except mere browsing and don’t even log in to your accounts.
https://techobserver.in/2019/03/06/dont-do-your-banking-over-free-wifi-like-