Technology

Researchers discover massive Wi-Fi vulnerability affecting multiple access points — AirSnitch lets attackers on the same network intercept data and launch machine-in-the-middle attacks

Source

Tom's Hardware

Published

Feb 26, 2026

TL;DR

AI Generated

Researchers from the University of California, Riverside uncovered a significant Wi-Fi vulnerability named AirSnitch, which enables attackers on the same network to intercept data and execute machine-in-the-middle attacks. AirSnitch exploits weaknesses in Wi-Fi security by not cryptographically linking client MAC addresses, Wi-Fi encryption keys, and IP addresses, allowing attackers to assume the identity of other devices. The vulnerability was found in popular home routers, open-source firmwares, and university enterprise networks, indicating a systemic issue with Wi-Fi architecture. While the attack is complex, the researchers urge the industry to address this flaw and enhance client isolation protocols to prevent such exploits in the future.

Read Full Article

How a USB-connected speaker can infect a PC without ever being touched

A researcher discovered a vulnerability in the Sound Blaster Katana V2X speaker that allows a Bluetooth device to connect to a PC via USB without authentication or pairing. The Creative Transport Protocol (CTP) used by the speaker enables commands like changing LED colors and equalizer settings, as well as uploading new firmware without security measures. This flaw could potentially lead to remote code execution on the targeted device, highlighting a security risk in USB-connected speakers.

Ars Technica•

1 week ago

Microsoft just quietly retracted its Windows Defender is enough antivirus claim, you might still need a third-party

Microsoft recently retracted its claim that Windows Defender provides sufficient antivirus protection for most users, prompting the deletion of a blog post that stated Windows Security was enough for Windows 11 users. The blog post highlighted the built-in protection features of Windows Defender but was unexpectedly removed without explanation. Third-party testing consistently ranked Microsoft Defender among the top antivirus products, but concerns were raised about its offline protection capabilities and ecosystem limitations. Microsoft's decision to delete the blog post has sparked discussions about the evolving landscape of cybersecurity and the role of third-party antivirus software in different environments.

Windows Latest•

1 week ago

NSA using Claude Mythos for 'offensive cyber operations,' report claims — says 'half-a-dozen' Anthropic engineers embedded inside the agency

The National Security Agency (NSA) is reportedly utilizing Anthropic's cybersecurity-focused Mythos model for "offensive cyber operations," with several Anthropic engineers embedded within the agency. This move aims to gain an advantage over adversaries who may also be using similar AI models. Despite Anthropic being banned from providing services to the Department of Defense (DOD), the engineers are assisting in customizing Mythos for specialized cyber-attacks. The situation stems from a dispute between Anthropic and the DOD over the use of AI for various purposes, leading to Anthropic being labeled a supply chain risk. The ongoing legal battle between Anthropic and the DOD adds complexity to the situation, raising questions about the future of their relationship.

Tom's Hardware•

1 week ago

Outlook may have allowed unencrypted connections for decades, report claims — Fedora and Dovecot upgrade reveal protocol downgrade issue present since at least 2007

An IT blogger discovered a significant security vulnerability in Microsoft Outlook where SSL/TLS connections were being downgraded to unencrypted plaintext without user notification. This issue affects Outlook versions from 2007 to 2016, potentially even later versions. The problem was uncovered during a mail server upgrade from Fedora 42 to Fedora Server 43, causing errors for users with the "Use TLS/SSL" checkbox enabled in Outlook. The issue stems from a protocol downgrade triggered by selecting port 110 and using the POP3 protocol, leading to unencrypted email retrieval for over a decade. The recent Dovecot upgrade in Fedora Server 43 revealed this behavior, emphasizing the importance of ensuring encrypted connections for email security.

Tom's Hardware•

1 week ago

How a USB-connected speaker can infect a PC without ever being touched

Ars Technica•

1 week ago

Microsoft just quietly retracted its Windows Defender is enough antivirus claim, you might still need a third-party

Windows Latest•

1 week ago

NSA using Claude Mythos for 'offensive cyber operations,' report claims — says 'half-a-dozen' Anthropic engineers embedded inside the agency

Tom's Hardware•

1 week ago

Outlook may have allowed unencrypted connections for decades, report claims — Fedora and Dovecot upgrade reveal protocol downgrade issue present since at least 2007

Tom's Hardware•

1 week ago

Researchers discover massive Wi-Fi vulnerability affecting multiple access points — AirSnitch lets attackers on the same network intercept data and launch machine-in-the-middle attacks

TL;DR

Similar Articles

How a USB-connected speaker can infect a PC without ever being touched

Microsoft just quietly retracted its Windows Defender is enough antivirus claim, you might still need a third-party

NSA using Claude Mythos for 'offensive cyber operations,' report claims — says 'half-a-dozen' Anthropic engineers embedded inside the agency

Outlook may have allowed unencrypted connections for decades, report claims — Fedora and Dovecot upgrade reveal protocol downgrade issue present since at least 2007

We use cookies

Researchers discover massive Wi-Fi vulnerability affecting multiple access points — AirSnitch lets attackers on the same network intercept data and launch machine-in-the-middle attacks

TL;DR

Similar Articles

How a USB-connected speaker can infect a PC without ever being touched

Microsoft just quietly retracted its Windows Defender is enough antivirus claim, you might still need a third-party

NSA using Claude Mythos for 'offensive cyber operations,' report claims — says 'half-a-dozen' Anthropic engineers embedded inside the agency

Outlook may have allowed unencrypted connections for decades, report claims — Fedora and Dovecot upgrade reveal protocol downgrade issue present since at least 2007