A 44-year-old man was sentenced to seven years and four months in prison for operating an “evil twin” WiFi network to steal the data of unsuspecting travelers at various airports across Australia. […]
That’s why you should always use a trustworthy VPN when on any network you can’t vouch for.
A VPN would not have helped with this. People connecting to the decoy wifi network were redirected to phishing pages that they willingly gave their info to. HTTPS was still present, the criminal still could not have intercepted information that wasn’t input into the phishing page. With a VPN, you would have still been redirected exactly the same way.
If the vpn offered its own dns, then it would never used the compromised dns.
You generally have to accept the captive portal pages before your vpn connection will be allowed.
