this post was submitted on 26 Feb 2026
194 points (98.5% liked)

Technology

82989 readers
3948 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related news or articles.
  3. Be excellent to each other!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, this includes using AI responses and summaries. To ask if your bot can be added please contact a mod.
  9. Check for duplicates before posting, duplicates may be removed
  10. Accounts 7 days and younger will have their posts automatically removed.

Approved Bots

founded 2 years ago
MODERATORS
L3s@lemmy.world
enu@lemmy.world
technopagan@lemmy.world
L4s@lemmy.world
L3s@hackingne.ws
194
New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises (arstechnica.com)
submitted 3 weeks ago by gedaliyah@lemmy.world to c/technology@lemmy.world
9 comments fedilink hide all child comments
 

Unlike previous Wi-Fi attacks, AirSnitch exploits core features in Layers 1 and 2 and the failure to bind and synchronize a client across these and higher layers, other nodes, and other network names such as SSIDs (Service Set Identifiers). This cross-layer identity desynchronization is the key driver of AirSnitch attacks.

The most powerful such attack is a full, bidirectional machine-in-the-middle (MitM) attack, meaning the attacker can view and modify data before it makes its way to the intended recipient. The attacker can be on the same SSID, a separate one, or even a separate network segment tied to the same AP. It works against small Wi-Fi networks in both homes and offices and large networks in enterprises.

all 10 comments
sorted by: hot top controversial new old
[–] Shadow@lemmy.ca 62 points 3 weeks ago* (last edited 3 weeks ago)

Actual paper here is more understandable than this article - https://www.ndss-symposium.org/ndss-paper/airsnitch-demystifying-and-breaking-client-isolation-in-wi-fi-networks/

First, Wi-Fi keys that protect broadcast frames are improperly managed and can be abused to bypass client isolation. Second, isolation is often only enforced at the MAC or IP layer, but not both. Third, weak synchronization of a client's identity across the network stack allows one to bypass Wi-Fi client isolation at the network layer instead, enabling the interception of uplink and downlink traffic of other clients as well as internal backend devices.

[–] paks@feddit.uk 39 points 3 weeks ago (2 children)

If I'm understanding correctly, this is saying that isolation between different clients on the same VLAN is broken? But this attack doesn't break isolation between VLANs?

So the major issue is if you've got a guest network on the same VLAN as your main network

[–] tidderuuf@lemmy.world 37 points 3 weeks ago (1 children)

Basically every single one of those Xfinity Wifi boxes that people got for free in their household thanks to Concast and their skeezy attempt to bolster their "mobile" network.

[–] Jolteon@lemmy.zip 1 points 3 weeks ago* (last edited 3 weeks ago)

What would the legality be of listening to people's phone calls if they are connecting to your personal home network without your permission to make them?

[–] Sanguine@lemmy.dbzer0.com 3 points 3 weeks ago

Correct me if I'm wrong, but the article does seem to indicate that isolation between VLANs is still secure assuming its set up correctly. A lot of folks set up VLANs but never complete the firewall rules afterwards.

[–] user28282912@piefed.social 19 points 3 weeks ago (2 children)

Just read the paper. ArsTechnica is such a terrible source for analysis on anything remotely technical.

[–] IratePirate@feddit.org 5 points 3 weeks ago

Agreed. Reading this, or trying to, I was switching back and forth between "this is missing information" and "why provide this additional explanation?" The target audience isn't clear. Either go for the technical deep dive or provide a much higher-level explanation of what happened. Not this... mess in between.

[–] bjoern_tantau@swg-empire.de 9 points 3 weeks ago (1 children)

I wonder if this can also be exploited when people are on a guest wifi.

[–] Atelopus-zeteki@fedia.io 19 points 3 weeks ago

Read the article. The answer to your question, per the subtitle right after the title, is yes.

Research Paper Citation: https://www.ndss-symposium.org/ndss-paper/airsnitch-demystifying-and-breaking-client-isolation-in-wi-fi-networks/