What is commonly referred to as an "evil twin" access point?

An "evil twin" access point refers to an unauthorized duplicate access point that mimics a legitimate one, typically with the intention of tricking users into connecting to it. This malicious setup allows attackers to intercept sensitive information such as passwords or financial data from users who mistakenly believe they are connected to a trusted network.

The term captures the deceptive nature of this type of attack, as the evil twin often broadcasts the same SSID (network name) as the legitimate access point, making it difficult for users to discern which is the authentic connection. Cybercriminals may set up these rogue hotspots in areas where users usually connect to a known public network, allowing them to carry out man-in-the-middle attacks.

In contrast, a secure peer-to-peer connection does not fit the description of an evil twin, as it usually involves trusted devices connecting directly without an intermediary access point. A legitimate public access point is a valid network provided by an institution or venue, while a fully compliant wireless access point indicates that the device meets all regulatory and security standards, without any fraudulent intent.