New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks

May 16, 2024 at 12:51PM Researchers uncovered a new security vulnerability, CVE-2023-52424, in the IEEE 802.11 Wi-Fi standard, known as the SSID Confusion attack. This flaw allows attackers to downgrade victims to a less secure network, intercept their traffic, and disable their VPN functionality. Mitigations proposed involve updates to the Wi-Fi standard and avoiding credential … Read more

Flaw in Wi-Fi Standard Can Enable SSID Confusion Attacks

May 15, 2024 at 05:36PM A design flaw in the IEEE 802.11 Wi-Fi standard allows attackers to trick clients into connecting to a less secure network. This affects all Wi-Fi clients and networks and poses risks like traffic interception. Researchers propose standard updates and mitigation methods. The flaw results from the standard not mandating authentication … Read more