SecureTeam

iOS WiFi crashes with malicious hotspot name

By Mark Faithfull | News, Vulnerabilities | 23 June, 2021 | 0

iPhone users should beware after a bug is disclosed that can disable the WiFi system simply by connecting to a hotspot with a specially crafted name. The bug in iOS results from a poorly sanitised input string (Improper Input Validation) and in this case it was a failure to remove escape sequences from the input.Read more

Wi-Fi FragAttacks expose flaws in WPA2, WPA3

By Mark Faithfull | News, Vulnerabilities | 19 May, 2021 | 0

Design and Implementation flaws in Wi-Fi standards have been disclosed that could leave home and enterprise Wi-Fi networks vulnerable. The flaws are thought to affect all Wi-Fi systems from WEP through to the latest WPA3 security standard. Source: fragattacks.com The vulnerabilities have been named FragAttacks as they are mainly related to flaws in the wayRead more

Kr00k Wi-Fi vulnerability affects a billion devices

By Mark Faithfull | News, Vulnerabilities | 12 March, 2020 | 1

Kr00k is a serious Wi-Fi vulnerability which can trick a device to retransmit the last 32k of encrypted traffic with an encryption key of all zeros. The flaw affects devices using Wi-Fi chips from Broadcom and Cypress including Apple devices, Amazon Echo and Google Nexus devices. The bug can be triggered when a device disconnectsRead more

Hue smart bulb RCE vulnerability patched

By Mark Faithfull | News, Vulnerabilities | 15 February, 2020 | 0

A remote code execution vulnerability in the Zigbee protocol allowed researchers to hack a Hue smart bulb and use that as a beachhead to compromise an entire network. Security Researchers at Check Point have demonstrated how to exploit a vulnerability in a Philips Hue smart bulb (CVE-2020-6007) and then pivot to compromise the Hue hubRead more

Vulnerability in Wifi Chip used in Microsoft, Samsung and Sony devices allows zero click remote code execution

By Mark Faithfull | News, Vulnerabilities | 25 January, 2019 | 0

Security research firm Embedi has recently published a report on the Marvell Avastar Wifi chip used in many devices including Microsoft Surface and Surface Pro, Samsung Chromebooks and some Samsung phones and the Sony Playstation 4 to name but a few. The flaw in Marvell’s implementation of the ThreadX operating system running on the WifiRead more

What are the security improvements of WPA3 ?

By Ian Reynolds | Articles, Wireless Security | 7 July, 2018 | 0

The Wi-Fi Alliance (WFA) — the body responsible for creating the encryption standard used by billions of wireless Wi-Fi products worldwide — announced in January 2018 some significant improvements to its security protocol Wi-Fi Protected Access II (WPA2). In a much-anticipated move, the Wi-Fi Alliance also announced WPA3. The new protocol is designed to work alongsideRead more

Blog

iOS WiFi crashes with malicious hotspot name

Wi-Fi FragAttacks expose flaws in WPA2, WPA3

Kr00k Wi-Fi vulnerability affects a billion devices

Hue smart bulb RCE vulnerability patched

Vulnerability in Wifi Chip used in Microsoft, Samsung and Sony devices allows zero click remote code execution

What are the security improvements of WPA3 ?

Recent Posts

Archives

Blog

iOS WiFi crashes with malicious hotspot name

Wi-Fi FragAttacks expose flaws in WPA2, WPA3

Kr00k Wi-Fi vulnerability affects a billion devices

Hue smart bulb RCE vulnerability patched

Vulnerability in Wifi Chip used in Microsoft, Samsung and Sony devices allows zero click remote code execution

What are the security improvements of WPA3 ?

Recent Posts

Tags

Archives