New AirSnitch Attack: Bypassing Encryption and Client Isolation in Wi‑Fi

Researchers have shown that at the physical and data link layers of Wi‑Fi, certain characteristics make full client isolation impossible, even with encryption enabled (WPA2/WPA3). The AirSnitch attack allows an attacker within the access point's range to gather data about client interactions and bypass isolation mechanisms intended to prevent direct traffic exchange between devices.

The attack has been confirmed on a wide range of hardware, including Netgear, D‑Link, Ubiquiti, Cisco, as well as on DD‑WRT and OpenWrt firmware. Exploitation requires no network authentication and can be performed with minimal privileges, provided there is access to a radio interface. This enables interception or analysis of packets exchanged between clients, undermining the perceived security of Wi‑Fi's cryptographic protection at the infrastructure level.

📎 Article: https://arstechnica.com/security/2026/02/new-airsnitch-attack-breaks-wi-fi-encryption-in-homes-offices-and-enterprises/

💬 Discuss