Researchers say it’s way too easy to break into most home WLANs. Most users leave their wireless routers configured with the default SSID, administrative password, and unencrypted settings. The safest bet is a secure VPN connection for your users, researchers say. Most home users run WEP encryption or none at all, or only about 10 or 20 percent run WPA. The “evil twin” attack is basically a phishing scheme that sends machines to corrupted servers posing as a trusted resource.”]
Source: https://www.darkreading.com/analytics/hacking-home-wlans