Hackers exploit critical D-Link DIR-859 router flaw to steal passwords

June 29, 2024 at 11:24AM Hackers are exploiting a critical vulnerability (CVE-2024-0769) in D-Link DIR-859 WiFi routers to access sensitive data, including account information and passwords. Despite the router being end-of-life, D-Link has released a security advisory warning about the flaw in the “fatlady.php” file. This issue poses a significant security risk, and users are … Read more

ASUS warns of critical remote authentication bypass on 7 routers

June 15, 2024 at 01:15PM ASUS has released a firmware update to address vulnerabilities impacting seven router models, allowing remote attackers to take control of the devices. Users are advised to update to the latest firmware versions and strengthen account and WiFi passwords. The update also addresses other vulnerabilities and includes an update for the … Read more

Command senior chief busted for secretly setting up Wi-Fi on US Navy combat ship

June 4, 2024 at 04:14PM Former Command Senior Chief Grisel Marrero was demoted and convicted by the US Navy for setting up an unauthorized Wi-Fi network on the USS Manchester. Marrero coordinated the network’s installation and usage with other sailors, and attempted to cover it up. She was charged with several offenses and demoted from … Read more

Flaw in Wi-Fi Standard Can Enable SSID Confusion Attacks

May 15, 2024 at 05:36PM A design flaw in the IEEE 802.11 Wi-Fi standard allows attackers to trick clients into connecting to a less secure network. This affects all Wi-Fi clients and networks and poses risks like traffic interception. Researchers propose standard updates and mitigation methods. The flaw results from the standard not mandating authentication … Read more

New Wi-Fi Vulnerabilities Expose Android and Linux Devices to Hackers

February 21, 2024 at 12:27PM Cybersecurity researchers have discovered authentication bypass flaws in open-source Wi-Fi software found in Android, Linux, and ChromeOS devices. The vulnerabilities, tracked as CVE-2023-52160 and CVE-2023-52161, could deceive users into malicious networks or allow attackers to join trusted networks without a password. Fixes are available for some systems but pending for … Read more

New Wi-Fi Authentication Bypass Flaws Expose Home, Enterprise Networks

February 15, 2024 at 09:51AM New Wi-Fi authentication bypass vulnerabilities in open source software discovered by Mathy Vanhoef and Heloise Gollier pose threats to enterprise and home networks. The flaws affect Wpa_supplicant and Intel’s iNet Wireless Daemon (IWD) software. Exploitation could lead to traffic interception and unauthorized access to Wi-Fi networks. Vendors have been notified … Read more