Hey everyone yesterday I was at a grocery store and I noticed suspicious WiFi networks and Bluetooth networks. I am quite tech savvy so I decided to investigate thinking it was probably just some skid. But when I opened Wireshark I saw the mac addressees for Cisco Merkari (A relatively advanced DPI program) , along with multiple other enterprise grade tools such as Fortinet and VMware. I have collected pcaps for both my Bluetooth and WiFi interfaces with Wireshark(available upon request). Does anyone have any idea could this be a government contractor? Or could it just be spoofed cause its relatively easy to spooph Mac addresses.
Cisco makes the devices and the network management software Meraki. If you have service from Spectrum, you could probably run the service through to those devices, and then to keep track of what they are for an administrator probably altered the ESSID’s via Meraki to reflect it and this is why they are named as such.
It is a bit strange there is that many if they are serving some service from Spectrum, but this warrants further investigation to the immediate physical area. Does the grocery store or a nearby business have a lot of TV’s or some such? It’s hard to say what the devices actually are for, but my best guess as to where I might see something like this is a place like a sports bar where there are many multiple TV’s with their own boxes so that they can show multiple sports broadcasts simultaneously.
Its just a winco in a fairly small town If y’all want to look at the pcap files and say what y’all think I’ll leave it here. https://drive.proton.me/urls/61XAHD9X38#DP8mRr1K0vQu
Is there a spectrum store there?
The sage and askey are charter routers
Its the parking lot of the Winco in Roseburg Oregon. I am not aware of any spectrum store considering that is one of my interests I probably would have noticed it there were also BT devices name stuff like vm-307 so why would a enterprise use a VM for WiFi and bluetooth
The nearby apartment complex may have an agreement