The same Belgian cybersecurity expert is responsible for several other WiFi-related vulnerabilities he has leaked. While the current WiFi loopholes he discovered are centred on anything related to WiFi connectivity — from cellular phone connection to router hosts, according to the Vanhoef FragAttack report.
The Belgian security expert, Mathy Vanhoef, added his new WiFi vulnerabilities to the existing collection of WiFi flaws — though he dubbed his latest the “FragAttack” or “fragmentation and aggregation attacks,” by details.
At the same time, FragAttack can also serve as a tool to leak user information, which could either be gotten from mobile or router devices. Meanwhile, nine of his discovered flaws depend on the given WiFi product — some WiFi manufacturers did not encrypt the security protocol of their products while programming the device.
Kathy Vanhoef developed a website he called FragAttack detailed with vital information in line with his findings. The rest of the flaws that complete his collection are centred on a bug — baked bugs that impact high-end WiFi — even WEP protocols are vulnerable to these bugs.
Nonetheless, FragAttack can be duly utilized by security experts — according to Vanhoef’s report, it requires a complex network setting that also requires active user interaction to access these flaws.
Several WiFi manufacturers have reportedly developed patches to fix these flaws against possible FragAttacks — these companies include Juniper, Cisco, Lenovo, Microsoft, Intel, Samsung, Linux, Netgear, etc. Microsoft appears not to take chances with FragAttacks, the software company reportedly released three autonomous patches compatible with Windows v7, v8.1, V10 respectively.
While other tech companies are developing tools to counter these flaws and dedicated Blogspot to create awareness of these WiFi-related flaws, especially Netgear.
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behaviour or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
