๐ Holiday Giveaway๐
Sponsored by Suzu Labs, the Phillip Wylie Show is giving away a HAK5 WiFi Pineapple Pager โ a powerful tool for wireless security assessments and red team operations.
๐ Enter here: https://suzulabs.com/giveaway
Huge thanks to Suzu Labs for supporting the cybersecurity community.
#Cybersecurity #OffensiveSecurity #PenTesting #WirelessSecurity #Giveaway
Enhance Safety with Wireless Security Camera Systems Dubai
VRS Technologies LLC provides top-grade Wireless Security Camera Systems Dubai for homes and businesses. Our advanced wireless CCTV solutions ensure seamless monitoring, reliability, and easy installation. For expert setup and support, contact us at +971505319306.
Visit Us: https://www.cctvinstallationdubai.ae/services/wireless-security-camera-systems-dubai-uae/
#wirelesscctv #securitycameras #cctvuae #dubaisecurity #cctvinstallation #surveillance #vrtstechnologiesllc #wirelesssecurity
Auch 2026 findet wieder ein #GI-SPRING-Graduiertenworkshop der Fachgruppe Security - Intrusion Detection and Response (SIDAR) statt. Diesmal am 21. und 22.04.2026 in #Heidelberg.
Zu den Themen gehรถren #VulnerabilityAssessment, #ThreatIntelligence, #IntrusionDetection, #Malware, #IncidentManagement, #WirelessSecurity, #DigitalForensics usw.
Einreichungen werden bis zum 15.03.2026 angenommen.
๐ Kali Linux 2025.3 Release โ Vagrant, Nexmon & NetHunter Love ๐
Kali 2025.3 just dropped with a tidy set of quality-of-life updates and some neat platform improvements. The team refreshed how they build Vagrant images (moving the VM workflow away from Packer towards a cleaner build pipeline), making virtual images easier to manage for labs and CI. ๐งฉ๐ฅ๏ธ
A big win for wireless researchers: Nexmon support returns (Broadcom/Cypress chips), bringing monitor mode and injection support back to devices including Raspberry Pi models (now supporting Pi 5). That means more accessible packet capture and radio experiments on compact SBCs. ๐ก๐ง
Kali is also trimming legacy support โ dropping ARMel โ and polishing desktop niceties like a configurable Xfce VPN-IP panel so multi-VPN users can choose which interface to show. ๐๐ง
New tools (10) were added to the repos โ highlights include Caido, Detect It Easy (DiE), krbrelayx, ligolo-mp, llm-tools-nmap, and patchleaks โ plus many package updates. Expect easier reverse/forensics workflows, Kerberos tooling, AI-cli helpers, and utilities to speed up patch validation. ๐งฐโจ
Kali NetHunter also got attention: a Nexmon-enabled Samsung Galaxy S10 image (budget-friendly internal monitor + injection), CARsenal (car-hacking toolkit) updates and refactors, Magisk module support for kernel modules (experimental), and a raft of bug fixes/UI work for mobile tooling. ๐ฑโ๏ธ
ARM builds were refined (recommend arm64 Raspberry Pi images, Pi 5 support, kernel update fixes) and there are the usual documentation updates, community wallpapers, and repository tweaks. If you run Kali in lab or mobile setups, this release is worth testing. ๐๐
โ ๏ธ Disclaimer:
For educational & authorized use only. Kaliโs wireless/attack-capability features (monitor/injection, CARsenal, NetHunter) must be used responsibly in controlled labs or with explicit permission.
#KaliLinux #Kali2025 #NetHunter #Nexmon #Infosec #PenTesting #WirelessSecurity #CyberSecurity #InfoSec
The fourth presentation was Ayoub et al.'s "BlueScream: Screaming Channels on Bluetooth Low Energy," exploring real-world firmware attacks via side-channel vulnerabilities in #BLE devices. (https://www.acsac.org/2024/program/final/s103.html) 5/6 #SideChannelAttack #WirelessSecurity
This summer, our researcher Nikola Antonijeviฤ attended #WiSec2025 & wrote a blog post on "Security in the Inaudible World" โ challenges in inaudible communication ๐
๐ https://www.esat.kuleuven.be/cosic/blog/wisec-2025-spotlight-security-in-the-inaudible-world/
Nikola also presented "ZeroTouch" at #SACMAT2025, reinforcing RSS for secure geofencing ๐ https://www.esat.kuleuven.be/cosic/blog/zerotouch-reinforcing-rss-for-secure-geofencing/
#WirelessSecurity #Geofencing
Wireless Security Protocols Explained: WEP, WPA, WPA2 & WPA3 ๐ก๐
Understanding wireless security protocols is essential for protecting your network from unauthorized access and ensuring data confidentiality.
๐ Key Protocols & Their Characteristics:
1. WEP (Wired Equivalent Privacy)
โข Introduced in 1997
โข Weak encryption (RC4), easily cracked
โข Deprecated and insecure
2. WPA (Wi-Fi Protected Access)
โข Interim solution after WEP
โข Improved encryption with TKIP
โข Still vulnerable to certain attacks
3. WPA2
โข Widely used today
โข Uses AES-based CCMP encryption
โข Supports enterprise (RADIUS) and personal (PSK) modes
4. WPA3
โข Latest standard with stronger security
โข Resistant to brute-force attacks
โข Supports SAE (Simultaneous Authentication of Equals)
โข Enhanced encryption and forward secrecy
Why it matters:
Choosing the right wireless protocol significantly affects your networkโs resilience against common attack vectors such as packet sniffing, replay attacks, and credential theft.
Disclaimer: This post is for educational and awareness purposes only. Always secure your wireless networks using the latest standards.
#WirelessSecurity #WPA3 #WEP #WPA2 #CyberSecurity #InfoSec #EducationOnly #WiFiProtocols #NetworkSecurity #WiFiEncryption
Wireless Penetration Testing Tools You Should Know ๐ก๐
Wireless networks can be a critical attack surface if not properly secured. These tools are widely used in authorized lab environments to assess the strength of Wi-Fi configurations and encryption protocols.
Use cases include:
โข Testing weak encryption (WEP/WPA)
โข Detecting rogue access points
โข Capturing and analyzing authentication handshakes
โข Teaching wireless attack vectors in controlled labs
Disclaimer: This content is for educational and ethical use only. Wireless testing must only be performed on networks you own or have explicit authorization to audit.
#WirelessSecurity #WiFiPentest #CyberSecurity #InfoSec #EthicalHacking #EducationOnly #RedTeamTools #WirelessAuditing #AircrackNG #WPA2
๐ก SDR Hacking Advanced: Reversing & Exploiting Wireless Communications at Hardwear.io
๐
May 27-29, 2025
โฐ 9:00 AM - 5:30 PM PDT
๐ Santa Clara Marriott
๐ฏ Dive into SIGINT techniques, reverse engineering, and real-world RF exploits.
Register now: https://buff.ly/4fw9dKe
Secure Your Home for Less - Blink Video Doorbell Now 42% Off on Amazon: https://www.reviewspace.info/secure-your-home-for-less-blink-video-doorbell-now-42-off-on-amazon
#HomeSecurity #VideoDoorbell #Blink #Amazon #Discount #SmartHome #TechDeals #WirelessSecurity #MotionDetection #TechGadgets #ReviewSpace
#WLPC reg opens today and for the first time ever I submitted a 3-day Bootcamp training!!
Also the 2024 Deep Dive is updated for a deeper look at WPA3 including packet captures.
Teaching with @subnetwork
#wifisecurity #wirelesssecurity #cybersecurity #networksecurity
"๐ง BLUFFS Attack - A Deeper Dive into the Threat Landscape ๐ต๏ธโโ๏ธ๐"
The recent discovery of the BLUFFS vulnerability in Bluetooth BR/EDR devices, as detailed in CVE-2023-24023, poses a significant security risk. This vulnerability affects devices supporting Secure Connections pairing and Secure Simple Pairing in Bluetooth Core Specifications 4.2 through 5.4. It allows man-in-the-middle (MITM) attacks that can force a short key length, potentially leading to the discovery of the encryption key and enabling live injection attacks.
The ACM SIGSAC Conference paper titled "BLUFFS: Bluetooth Forward and Future Secrecy Attacks and Defenses" further explores this issue, presenting six novel attacks that break Bluetooth sessions' forward and future secrecy. These attacks exploit vulnerabilities in the Bluetooth standard related to unilateral and repeatable session key derivation.
The Bluetooth Special Interest Group (SIG) addresses has acknowledged the vulnerability and recommends that implementations reject service-level connections on an encrypted baseband link with key strengths below 7 octets. For enhanced security, using Security Mode 4 Level 4, which rejects connections below 16 octets, is advised. Additionally, tracking that a link key was established using BR/EDR Secure Connections and verifying subsequent encryption establishment is crucial to mitigate this risk. ๐ก๐
๐ MITRE ATT&CK Vectors - CVE-2023-24023
Tags: #CyberThreat #InfoSec #BLUFFSVulnerability
#BLUFFS #BluetoothHacking #SecureCommunication #CyberAttack #WirelessSecurity ๐ถ๐ก๏ธ
Source: The Hacker News NIST CVE-2023-24023 Detail and the ACM SIGSAC Conference paper
What's Going on With Cybersecurity VC Investments? https://www.securityweek.com/whats-going-cybersecurity-vc-investments
read more #Tracking&LawEnforcement #SecurityArchitecture #ApplicationSecurity #Fraud&IdentityTheft #EndpointSecurity #IncidentResponse #WirelessSecurity #NetworkSecurity #Identity&Access #Vulnerabilities #MobileSecurity #DataProtection #Cyberwarfare
Track Down Ghosts in Your WiFi With the Pwnton Pack
If there's something weird in your Network Neighborhood, who you gonna call? If you want your WiFi troubles diagnosed in style, try calling [Travis Kaun] -- he might just show up wearing the amazing Pwnton Pack. Built from a replica Proton Pack similar to those used in the 1984 classic Ghostbusters , it's a portable wireless security diagnostics kit that should be able to pinpoint any weaknesses in your wireless network.
Inside, it's got a Mark VII WiFi Pineapple, which is a portable device designed for security testing purposes, as well as a Raspberry Pi running Pwnagotchi: a deep learning-based WiFi sniffer that aims to capture those network packets that help maximize your chances of brute-forcing the WPA key. These two devices are connected to an array of antennas, including a cool rotating 5 GHz panel antenna to scan the surrounding area.
Naturally, the Pwnton Pack also includes a Neutrona Wand, which in this case contains a 2.4 GHz Yagi antenna hooked up to an ESP32 programmed to perform deauthentication attacks. An Arduino Nano drives an LED matrix that shows scrolling Pac-Man ghosts, while a dedicated sound board provides movie sound effects. The whole system is powered by three LiPo battery packs, and can even be remotely operated if desired.
Sadly, it doesn't come with one of those ghost traps to suck up wayward WiFi networks, but the range of tools available should help to catch any kind of weird phantoms hiding in your system. We've spotted a few Proton Packs before, but never one with such advanced functionality. Security testing systems tend to be a bit less conspicuous, after all.
#securityhacks #wirelesshacks #ghostbusters #penetrationtesting #protonpack #wirelesssecurity
Leadership Articles โ BSW #145 - Leadership Articles
The post Leadership Articles โ BSW #145 appeared first on Security Weekly. more: http://feedproxy.google.com/~r/securityweekly/XBIC/~3/VaGj2VGSqFU/ #businesssecurityweekly #securitycertifications #wirelesssecurity #jasonalbuquerque #wirelesssecurity #networksecurity #securitycareers #paulasadoorian #securitydegree #mattalderman #wireless #careers #news #ciso #wifi #cso
Huh, I didn't know that there were already #WPA3-enabled #WiFi devices available. So much for it being a solution for #WPA2, but at least it's patchable. The question remains: will vendors update their devices and provide updates for devices that have already been sold? ๐ค #dragonblood #security #wifisecurity #wirelesssecurity
https://www.zdnet.com/article/dragonblood-vulnerabilities-disclosed-in-wifi-wpa3-standard/
The Security Weaknesses of Smartphones http://feedproxy.google.com/~r/infosecResources/~3/d6K7hVSUV60/ #WirelessSecurity
