Lots of news in the last 2 days about newly discovered old “vulnerabilities that affect Wi-Fi devices called “FragAttacks” (which is an awesome name BTW). The press is issuing it’s usual gloom and doom, patch now or you’re finished, dire warnings.
Point one: Wi-Fi Alliance, “There is no evidence of the vulnerabilities being used against Wi-Fi users maliciously.”
Point two direct from https://www.fragattacks.com/ :
The bad news –
“The discovered vulnerabilities affect all modern security protocols of Wi-Fi, including the latest WPA3 specification. Even the original security protocol of Wi-Fi, called WEP, is affected.”
The good news – “Fortunately, the design flaws are hard to abuse because doing so requires user interaction or is only possible when using uncommon network settings…By default devices don’t send fragmented frames. This means that the mixed key attack and the fragment cache attack, on their own, will be hard to exploit in practice, unless Wi-Fi 6 is used.”
Windows is patched, Linux kernel patches imminent, vendors are patching hardware… Use HTTPS, update your OS, patch your stuff, and go on about your business.
How to update your Home WIFI router – SecurityStudio
Security Advisories / Bulletins linked to FragAttacks
These are links to vendors pages which you can use to find updates for your device.
– – – – – – – – – –
Gifts for Men Dad Husband Fathers Day, Survival Gear and Equipment 12 in 1 Survival Kit
Regular = $36.99, clip 30% off coupon ($11.10), total = $25.89