What is Over-the-Air Credential Theft?

Over-the-air credential theft occurs when someone spoofs an SSID within the physical vicinity of devices that are configured to connect to that SSID, causing devices to send their credentials to the spoofed SSID instead of the legitimate one. According to the 2018 Credential Spill Report, an average of 1 million credentials were exposed daily in 2017, with no indication that this number will decrease.

Over the Air Credential Theft