{"id":11221,"date":"2026-03-10T05:03:25","date_gmt":"2026-03-10T05:03:25","guid":{"rendered":"https:\/\/serisec.com\/index.php\/2026\/03\/10\/new-attack-against-wi-fi-html\/"},"modified":"2026-03-10T05:03:25","modified_gmt":"2026-03-10T05:03:25","slug":"new-attack-against-wi-fi-html","status":"publish","type":"post","link":"https:\/\/serisec.com\/index.php\/2026\/03\/10\/new-attack-against-wi-fi-html\/","title":{"rendered":"New Attack Against Wi-Fi"},"content":{"rendered":"\n<div>New Attack Against Wi-Fi<\/div>\n<p> \t<BR><br \/>\n<BR><\/BR><br \/>\n    <!-- no image --><br \/>\n \t<BR><br \/>\n<BR><\/BR><\/p>\n<div>\n<p>It\u2019s called <a href=\"https:\/\/arstechnica.com\/security\/2026\/02\/new-airsnitch-attack-breaks-wi-fi-encryption-in-homes-offices-and-enterprises\/\">AirSnitch<\/a>:<\/p>\n<blockquote>\n<p>Unlike previous Wi-Fi attacks, AirSnitch exploits core features in Layers 1 and 2 and the failure to bind and synchronize a client across these and higher layers, other nodes, and other network names such as SSIDs (Service Set Identifiers). This cross-layer identity desynchronization is the key driver of AirSnitch attacks.<\/p>\n<p>The most powerful such attack is a full, bidirectional <a href=\"https:\/\/en.wikipedia.org\/wiki\/Man-in-the-middle_attack\">machine-in-the-middle (MitM) attack<\/a>, meaning the attacker can view and modify data before it makes its way to the intended recipient. The attacker can be on the same SSID, a separate one, or even a separate network segment tied to the same AP. It works against small Wi-Fi networks in both homes and offices and large networks in enterprises.<\/p>\n<p>With the ability to intercept all link-layer traffic (that is, the traffic as it passes between Layers 1 and 2), an attacker can perform other attacks on higher layers. The most dire consequence occurs when an Internet connection isn\u2019t encrypted\u00ad\u2014something that Google <a href=\"https:\/\/transparencyreport.google.com\/https\/overview\">recently estimated<\/a> occurred when as much as 6 percent and 20 percent of pages loaded on Windows and Linux, respectively. In these cases, the attacker can view and modify all traffic in the clear and steal authentication cookies, passwords, payment card details, and any other sensitive data. Since many company intranets are sent in plaintext, traffic from them can also be intercepted.<\/p>\n<p>Even when HTTPS is in place, an attacker can still intercept domain look-up traffic and use DNS cache poisoning to corrupt tables stored by the target\u2019s operating system. The AirSnitch MitM also puts the attacker in the position to wage attacks against vulnerabilities that may not be patched. Attackers can also see the external IP addresses hosting webpages being visited and often correlate them with the precise URL.<\/p>\n<\/blockquote>\n<p>Here\u2019s the <a href=\"https:\/\/www.ndss-symposium.org\/ndss-paper\/airsnitch-demystifying-and-breaking-client-isolation-in-wi-fi-networks\/\">paper<\/a>.<\/p>\n<\/div>\n<p> \t<BR><br \/>\n <BR><\/BR><br \/>\n    Bruce Schneier<br \/>\n \t<BR><br \/>\n<BR><\/BR><br \/>\n<a href=\"https:\/\/www.schneier.com\/blog\/archives\/2026\/03\/new-attack-against-wi-fi.html\">Go to bruce schneier<\/a><br \/>\n \t<BR><br \/>\n <BR><\/BR><\/p>\n","protected":false},"excerpt":{"rendered":"<p>New Attack Against Wi-Fi It\u2019s called AirSnitch: Unlike previous Wi-Fi attacks, AirSnitch exploits core features in Layers 1 and 2 and the failure to bind and synchronize a client across these and higher layers, other nodes, and other network names such as SSIDs (Service Set Identifiers). This cross-layer identity desynchronization is the key driver of [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[88,57,267,2353,1,1886],"tags":[87],"class_list":["post-11221","post","type-post","status-publish","format-standard","hentry","category-academic-papers","category-bruce-schneier","category-cyberattack","category-man-in-the-middle-attacks","category-uncategorized","category-wi-fi","tag-bruce-schneier"],"_links":{"self":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/11221"}],"collection":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/comments?post=11221"}],"version-history":[{"count":0,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/posts\/11221\/revisions"}],"wp:attachment":[{"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/media?parent=11221"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/categories?post=11221"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/serisec.com\/index.php\/wp-json\/wp\/v2\/tags?post=11221"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}