Skip to main content

DragonBlood WPA3 WiFi Vulnerabilities

Security researchers have disclosed details of multiple vulnerabilities in the WPA3 WiFi protocol, collectively named DragonBlood. They claim in their research paper that an attacker within wireless range may be able to crack network passwords and intercept encrypted communications.

Threat ID:
CC-3024
Category:
DOS
Threat Severity:
Low
Threat Vector:
Vulnerability
Published:
11 April 2019 12:00 AM
Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

Security researchers have disclosed details of multiple vulnerabilities in the WPA3 WiFi protocol, collectively named DragonBlood. They claim in their research paper that an attacker within wireless range may be able to crack network passwords and intercept encrypted communications.

Affected platforms

The following platforms are known to be affected:

iOS

WPA3-Personal
  • EAP-pwd

macOS Mojave

macOS Sierra

macOS High Sierra

tvOS

Safari

Threat details

WPA3-Personal replaces the pre-shared key authentication used by WPA2 with a more secure Simultaneous Authentication of Equals (SAE) method, known as Dragonfly. The researchers found that this handshake has a number of flaws which can be exploited to launch denial-of-service attacks, force devices to downgrade to WPA2 or extract shared credentials.

For further information:

Remediation steps

Type Step

The WiFi Alliance have confirmed that updates to the WPA3 protocol have been passed to manufacturers and vendors for integration with their products. Organisation should contact their IT suppliers to obtain and apply these updates.

Last edited: 14 February 2020 2:53 pm