{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiab5pddg6y6frkj4sjkpj3xaahwir4eqzwriwf7lakdleoh3qv6im",
    "uri": "at://did:plc:kyxdufbi5qaljy7bxivztuhy/app.bsky.feed.post/3mgolxowhe5h2"
  },
  "path": "/blog/archives/2026/03/new-attack-against-wi-fi.html",
  "publishedAt": "2026-03-09T10:57:18.000Z",
  "site": "https://www.schneier.com",
  "tags": [
    "Uncategorized",
    "academic papers",
    "cyberattack",
    "man-in-the-middle attacks",
    "Wi-Fi",
    "AirSnitch",
    "machine-in-the-middle (MitM) attack"
  ],
  "textContent": "It’s called AirSnitch:\n\n> Unlike previous Wi-Fi attacks, AirSnitch exploits core features in Layers 1 and 2 and the failure to bind and synchronize a client across these and higher layers, other nodes, and other network names such as SSIDs (Service Set Identifiers). This cross-layer identity desynchronization is the key driver of AirSnitch attacks.\n>\n> The most powerful such attack is a full, bidirectional machine-in-the-middle (MitM) attack, meaning the attacker can view and modify data before it makes its way to the intended recipient. The attacker can be on the same SSID, a separate one, or even a separate network segment tied to the same AP. It works against small Wi-Fi networks in both homes and offices and large networks in enterprises...",
  "title": "New Attack Against Wi-Fi"
}