FragAttacks explained

FragAttacks, or fragmentation and aggregation attacks, are a group of Wi-Fi vulnerabilities discovered by security research Mathy Vanhoef. Since the vulnerabilities are design flaws in the Wi-Fi standard, any device released after 1997 could be vulnerable.^[1] The attack can be executed without special privileges.^[2] The attack was detailed on August 5, 2021 at Black Hat Briefings USA and at later at the USENIX 30th Security Symposium, where recordings are shared publicly.^{[3] [4]} The attack does not leave any trace in the network logs.^[5]

Patches

Vanhoef worked with the Wi-Fi Alliance to help vendors issue patches.

Microsoft started issuing patches for Windows 7 through Windows 10 on May 11, 2021.^[6]

External links

• Fragment and Forge: Breaking Wi-Fi Through Frame Aggregation and Fragmentation by Mathy Vanhoef

Notes and References

1. Web site: Most Wi-Fi Devices Released Since 1997 Are Vulnerable to FragAttacks. 2021-05-13. PCMAG. en.
2. Decades-Old 'Frag Attack' Flaws Affect Almost Every Wi-Fi Device. en-US. Wired. 2021-06-22. 1059-1028.
3. Web site: 2021-08-06. FragAttacks Foil 2 Decades of Wireless Security. 2021-12-25. Dark Reading. en.
4. Book: Vanhoef, Mathy. 2021. Fragment and Forge: Breaking Through Frame Aggregation and Fragmentation. en. 161–178. 978-1-939133-24-3.
5. Web site: 2021-07-13. Why We Need to Raise the Red Flag Against FragAttacks. 2021-12-25. Dark Reading. en.
6. Web site: Update Windows (and Lots of Other Stuff) ASAP: 'FragAttack' Bugs Found Lurking in Millions of Wifi Devices. 2021-06-22. Gizmodo. 12 May 2021 . en-us.