If you’re surfing the web from a wireless router supplied by some of the
biggest device makers, there’s a chance Samy Kamkar can identify your geographic
That’s because WiFi access points made by Westell and others are vulnerable
to XSS, or cross-site scripting, attacks that can siphon a device’s media access
control address with one wayward click of the mouse. Once in possession of the
unique identifier, Kamkar can plug it in to Google’s Google Location Services
and determine where you are.