Security News New Wi-Fi Vulnerability Enables Network Eavesdropping via Downgrade Attacks

silversurfer

silversurfer

Super Moderator
Thread author
Verified
Top Poster
Staff Member
Malware Hunter
Aug 17, 2014
11,699
Content source
https://thehackernews.com/2024/05/new-wi-fi-vulnerability-enabling.html
Researchers have discovered a new security vulnerability stemming from a design flaw in the IEEE 802.11 Wi-Fi standard that tricks victims into connecting to a less secure wireless network and eavesdrop on their network traffic.

The SSID Confusion attack, tracked as CVE-2023-52424, impacts all operating systems and Wi-Fi clients, including home and mesh networks that are based on WEP, WPA3, 802.11X/EAP, and AMPE protocols.

The method "involves downgrading victims to a less secure network by spoofing a trusted network name (SSID) so they can intercept their traffic or carry out further attacks," Top10VPN said, which collaborated with KU Leuven professor and researcher Mathy Vanhoef.

"A successful SSID Confusion attack also causes any VPN with the functionality to auto-disable on trusted networks to turn itself off, leaving the victim's traffic exposed."
Click to expand...
 
  • +Reputation
  • Like
  • Hundred Points
Reactions: vtqhtr413, Andy Ful, Trident and 3 others
Trident

Trident

Level 34
Verified
Top Poster
Well-known
Feb 7, 2023
2,357
I am not sure to what extent this is a problem nowadays, given that HTTP is almost fully phased out. Definitely a security risk though.
 
F

ForgottenSeer 109138

Trident said:
I am not sure to what extent this is a problem nowadays, given that HTTP is almost fully phased out. Definitely a security risk though.
Click to expand...
There is not only this, but its a lot of work considering the attacker must be within range to perform an AiTM, for a targeted attack, this scenario has the risk-adjusted return factor of minimal and not likely something that would be deployed often if ever.
 

Similar threads

Lymphocyte
    • Like
    • Wow
Security News Microsoft Defender adds detection of unsecure Wi-Fi networks
Replies
0
Views
1,744
Security News
Lymphocyte
Lymphocyte
oldschool
    • +Reputation
    • Like
    • Thanks
Security News Why it’s time to take warnings about using public Wi-Fi, in places like airports, seriously
Replies
3
Views
1,809
Security News
bazang
bazang
Gandalf_The_Grey
    • Like
Security News Hackers breach US firm over Wi-Fi from Russia in 'Nearest Neighbor Attack'
Replies
0
Views
365
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top