this post was submitted on 26 Feb 2026
129 points (98.5% liked)

Technology

81907 readers
5040 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
129
New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises (arstechnica.com)
submitted 8 hours ago by gedaliyah@lemmy.world to c/technology@lemmy.world
6 comments fedilink hide all child comments
 

Unlike previous Wi-Fi attacks, AirSnitch exploits core features in Layers 1 and 2 and the failure to bind and synchronize a client across these and higher layers, other nodes, and other network names such as SSIDs (Service Set Identifiers). This cross-layer identity desynchronization is the key driver of AirSnitch attacks.

The most powerful such attack is a full, bidirectional machine-in-the-middle (MitM) attack, meaning the attacker can view and modify data before it makes its way to the intended recipient. The attacker can be on the same SSID, a separate one, or even a separate network segment tied to the same AP. It works against small Wi-Fi networks in both homes and offices and large networks in enterprises.

top 6 comments
sorted by: hot top controversial new old
[–] Shadow@lemmy.ca 37 points 7 hours ago* (last edited 7 hours ago)

Actual paper here is more understandable than this article - https://www.ndss-symposium.org/ndss-paper/airsnitch-demystifying-and-breaking-client-isolation-in-wi-fi-networks/

First, Wi-Fi keys that protect broadcast frames are improperly managed and can be abused to bypass client isolation. Second, isolation is often only enforced at the MAC or IP layer, but not both. Third, weak synchronization of a client's identity across the network stack allows one to bypass Wi-Fi client isolation at the network layer instead, enabling the interception of uplink and downlink traffic of other clients as well as internal backend devices.

[–] paks@feddit.uk 30 points 8 hours ago (2 children)

If I'm understanding correctly, this is saying that isolation between different clients on the same VLAN is broken? But this attack doesn't break isolation between VLANs?

So the major issue is if you've got a guest network on the same VLAN as your main network

[–] tidderuuf@lemmy.world 27 points 7 hours ago

Basically every single one of those Xfinity Wifi boxes that people got for free in their household thanks to Concast and their skeezy attempt to bolster their "mobile" network.

[–] Sanguine@lemmy.dbzer0.com 1 points 5 hours ago

Correct me if I'm wrong, but the article does seem to indicate that isolation between VLANs is still secure assuming its set up correctly. A lot of folks set up VLANs but never complete the firewall rules afterwards.

[–] bjoern_tantau@swg-empire.de 10 points 8 hours ago (1 children)

I wonder if this can also be exploited when people are on a guest wifi.

[–] Atelopus-zeteki@fedia.io 16 points 7 hours ago

Read the article. The answer to your question, per the subtitle right after the title, is yes.

Research Paper Citation: https://www.ndss-symposium.org/ndss-paper/airsnitch-demystifying-and-breaking-client-isolation-in-wi-fi-networks/