New vulnerabilities have been found in the newly launched standard for WiFi networks WPA3, which allows an attacker to recover WiFi passwords using side-channel attacks.
After some researchers found this flaw, WiFi Alliance, organization in charge of the development and certification of WiFi technology, released the corresponding patches to mitigate this vulnerability and made recommendations so that users can protect themselves.
However, these patches were not created together with the researchers, so the problem has arisen that they are not sufficient to stop attackers. Moreover, these patches open two new avenues for side-channel attacks, por lo que el problema se ha agravado.
Los investigadores, junto a WiFi Alliance, han comunicado que actualmente se están actualizando las medidas de seguridad adecuadamente para proteger a los usuarios, pero que éstas no serán compatibles con la versión original de WPA3.