AirSnitch - Old WiFi attacks updated, refurbished

[Kurt Buff]

I've quickly searched for 802.1x in the linked paper, but it's very unclear to me what flavor they were able to compromise. 

Specifically, it doesn't look like they tried a network where the auth is mutual TLS, and they were able to break one using user IDs and passwords, based on how this was worded. 

Also, it was noted that proper implementation of VLANs seems to provide protection.

https://arstechnica.com/security/2026/02/new-airsnitch-attack-breaks-wi-fi-encryption-in-homes-offices-and-enterprises/

"Paper co-author Mathy Vanhoef, said a few hours after this post went live that the attack may be better described as a Wi-Fi encryption “bypass,” “in the sense that we can bypass client isolation. We don’t break Wi-Fi authentication or encryption. Crypto is often bypassed instead of broken. And we bypass it ;)” People who don’t rely on client or network isolation, he added, are safe."

Link to original paper here:

https://arstechnica.com/security/2026/02/new-airsnitch-attack-breaks-wi-fi-encryption-in-homes-offices-and-enterprises/

Kurt