Get to know what sniffing is, the dangers, and how to avoid it

2023-04-04T02:43:35.000000Z
Share:
Get to know what sniffing is, the dangers, and how to avoid it

#TakKenalMakaTakInstall

Have you ever received messages on WhatsApp, SMS, and email asking you to click on a link or open and install the file sent? Don't just click and open it! It could be one of the modes of online fraud known as sniffing!

Do you know what sniffing is? Or is it the first time hearing it? Let's discuss what sniffing is, its dangers, and how to avoid it so your digital transactions remain safe.

Definition of sniffing

According to the OJK, sniffing is a wiretapping crime by hackers that is carried out using internet network tapping to steal important data and information such as m-banking usernames and passwords, credit data information, email passwords, and other important data.

Some sniffing practices are often encountered, such as sending links or APK files to victims, as happened some time ago. Perpetrators usually send fraudulent messages, such as receipts from package couriers, PLN bills, and online wedding invitations, asking the victim to click on the link or file sent.

The sniffing actor tries to make the victim open the link or file sent and then install it. After that, the sniffing actors will try to access the device and steal the victim's data.

Sniffing type

There are two types of sniffing attacks that you should know about, namely active and passive sniffing. The following describes the two kinds of sniffing attacks.

  • Active Sniffing

Active sniffing is a form of cybercrime that changes the contents of data packets. Active sniffing is performed at network switches, not hubs, by injecting traffic into the LAN in various ways.

  • Passive Sniffing

Unlike active sniffing, passive sniffing is done via a hub. Every data from LAN to LAN is sent first to the machine that connects the two, this type of sniffing attacks the hub that connects data from LAN to LAN by waiting for the data to be sent.

Sniffing Danger

If the sniffer manages to get into your device, then the perpetrator can access and read most of the private conversation data on WhatsApp, SMS, and email. This makes you lose your privacy because, without you knowing it, your device can be accessed by others.

Another potential danger from sniffing is the theft of important data and information such as usernames, passwords, and ATM/Mobile Banking/Internet Banking PINs. Sniffers will easily get important data and information when they successfully enter your device.

Sniffers may also change your username, password, and PIN for your financial application so you can no longer access it. Under these conditions, there is the potential for you to experience material losses because the perpetrator can access your banking service accounts and easily transfer your money to his account or other accounts that are intended to accommodate the proceeds of the crime.

How to Detect Sniffing

One way to detect sniffing attacks is by using tools such as Wireshark, debooke, Dsniff, and others. Wireshark is an open platform that can be operated on Windows and Linux operating systems. Wireshark helps track packets transferred over the network and helps filter packets based on protocol, IP, and several other parameters.

Besides Wireshark, you can also use debooke, a paid helpful tool, as a network analyzer and monitor. Debooke will prevent traffic from happening on multiple devices. The third tool is Dsniff, the most widely used tool because it can monitor and detect passwords on network servers.

 How to Avoid Sniffing

 After knowing the dangers of sniffing attacks, you must also know how to avoid them. There are several ways to prevent sniffing that you can practice as follows:

  • Don't just download applications or click on links sent via WhatsApp, SMS, or email from unknown sources.
  • Check the authenticity of the telephone number, WhatsApp, SMS, and email by contacting the official call center of the relevant company whose name is included in the message.
  • Download apps from trusted sources like Google Play store and App Store.
  • Activate notifications from various account transactions so you can monitor all transactions, both those that you make and those that are suspicious.
  • Change passwords and PINs in various financial services applications such as mobile banking and e-wallets.
  • Do not just use the internet network (Wi-Fi) in public when making financial transactions.

That's the discussion about sniffing. Ensure you are careful when receiving files and links from unknown numbers and use internet networks such as Wi-Fi in public spaces to avoid sniffing.

If there is a suspicious transaction in your account, report it immediately and contact the following Bank MAS customer care:

Call center: 1500011

Email: care@bankmas.co.id

Social Media:

I want to: