An air freshener with network connectivity? Better disguises immediately come to mind.<p>The power brick approach is an improvement but still makes the following assumptions:<p>* location of network ports is at floor level hidden under desks<p>* power and network cable colours match<p>* an employee won't disconnect a seemingly useless box when they need to charge their phone<p>* port security is not in use<p>A replacement "trojan horse" computer or printer that has been modified externally is a stealthier approach. Such devices have a reason for being connected to a power source and the network and do not raise suspicion (especially if the replacements are soiled and have worn asset stickers attached). Local IT staff will ensure the devices have network connectivity and will likely assume (in the case of a computer) that suspicious network traffic is the result of a virus.<p>Failing that full blown approach, even a "signal booster" could be a better disguise. An average person will think of their analogue TV and radio signal boosters. Further disguise can be added by soiling the devices, attaching asset stickers and stickers for a matching fake brand name and fake website where suspicious users can have their fears alleviated. The website has the added benefit of alerting the attacker that their device has been potentially compromised.
I built a similar device myself, following instructions given at [1]. Very handy little device, for multiple non-malicious reasons. I can carry a wireless router, power supply and cable around in my jacket pocket, and you can do fun stuff like telling the wireless router to transparently send all traffic through something like OpenVPN (or Tor, if you're paranoid). Makes security in potentially hostile environments very straightforward.<p>[1]: <a href="http://www.minipwner.com/" rel="nofollow">http://www.minipwner.com/</a>
It's interesting that the article never mentions that to use that he had to find a power plug with a free ethernet plug next to it. That might not be trivial in all environments. It gets a lot more suspicious if he has to search for that for a long time in the bank. Also someone might question the why the ethernet cable is there at some point. Just saying the article makes it sound easier it actually is for a non technical person.
I've done pen testing in the past and I've made similar 'plugs' like this. It's quite simple to make one of these, all you need is a router that can run openwrt and a case of some sort (pelican cases work nicely), tear it apart, flash it, paint the case and that's about it - total cost was about ~$100 + 2 hours of time and as an added bonus openwrt comes with a webui. Maybe this offers more...