{
    "file_item": {
        "filepath": "security-advisories",
        "filename": "CERT-EU-SA2014-013.txt"
    },
    "title": "Man-in-the-Middle Attack Against Email Synchronization",
    "serial_number": "2014-013",
    "publish_date": "21-02-2014 12:59:00",
    "description": "The attack consists in spoofing a SSID of a WiFi network to which devices try to connect (most devices actively advertise SSIDs of all networks known to them). Once a device connects to such network and tries to synchronize e-mails, a malicious server inside the spoofed network may potentially be able to access the email credentials. In case the SSL is used, a such server may try to impersonate the target email server and perform the SSL handshake, if the device is set to accept self-signed certificates.",
    "url_title": "2014-013",
    "content_markdown": null,
    "content_html": null,
    "licence": {
        "title": "Creative Commons Attribution 4.0 International (CC-BY 4.0)",
        "link": "https://creativecommons.org/licenses/by/4.0/",
        "restrictions": "https://cert.europa.eu/legal-notice",
        "author": "The Cybersecurity Service for the Union institutions, bodies, offices and agencies"
    }
}