Phishing,SMishing,andVishing·Chapter6 141 Now, Alice's laptop is associated with Bob's AP, she logs in to T-Mobile's captive portal and continues on to http://chase.com to pay some bills. Being knowledgeable of potential phishing attacks, Alice makes sure that she types (not by clicking a link that came in e-mail) http://chase.com in the browser address bar. Moreover, Alice uses security toolbars and phishing filters to protect herself against phishing. Since the local DNS in the AP is poisoned, Alice is directed to the phishing site hosted at the AP's local Apache server. A Chase phishing page opens to collect Alice's credentials. Furthermore, the security toolbars assure her that this site is legitimate and the built-in phishing filters do not provide warnings on the phishing site. Once she enters her credentials, she is redirected to the legitimate http://chase.com site and the security toolbars and phishing filters continue to assure her that she is on the legitimate Chase site. Alice finishes her coffee and leaves for work. Meanwhile, Bob waits for his next victim. n ote A bad actor can perform this attack using off-the-shelf laptop running UNIX or Windows operating systems. All he needs are two wireless cards: one to