Today, May 11, on the information portal FragAttacks published a rather detailed article about the vulnerabilities of the Wi-Fi protocol, which, in theory, can be quite dangerous for users. According to the enthusiasts who wrote this material, an attacker who is in the range of a Wi-Fi network can use the protocol vulnerability to steal personal data, as well as to interact with smart home devices. And, most importantly, these flaws are design features of the Wi-Fi standard, so you can’t just fix them with a patch.
For example, the vulnerabilities found affect all modern Wi-Fi security protocols, even the newest WPA3 specification, not to mention the original WEP protocol. That is, some of the disadvantages of a wireless network have existed since 1997. For example, enthusiasts exploit the flaw in the data aggregation structure of the Wi-Fi protocol to intercept the confidential information of a potential victim. You can intercept the login or password for certain sites in order to use them later for personal gain. The researchers also demonstrated how the found security vulnerability allows remote control of smart home devices.
You can, for example, control a smart plug or something else, creating various troubles. And finally, the enthusiasts demonstrated how vulnerabilities in the protocol can create a platform for more sophisticated attacks. In the video, the user showed how an attacker can take control of a system running Windows 7. There is no information about the more modern Windows 10, so perhaps the problem of the G7 is also in the absence of security patches since January last year. But, fortunately for users, it is quite difficult to launch an attack using a flaw in the original Wi-Fi protocol, and in the case of HTTPS sites, it is impossible.