Security researchers have discovered a critical vulnerability in the WPA3 handshake protocol affecting virtually every Wi-Fi router manufactured before 2024, potentially exposing 500 million home and business networks.
The Vulnerability
Dubbed "DragonBleed," the flaw allows attackers within Wi-Fi range to intercept encrypted traffic and inject malicious packets. The attack requires no authentication and can be executed with commodity hardware.
- 500 million routers affected worldwide
- All major brands: Netgear, TP-Link, ASUS, Linksys
- Firmware patches being released through June 2026
- Routers older than 5 years may not receive patches
Immediate Steps
Update router firmware immediately, disable WPS, use a VPN for sensitive activities, and consider replacing routers older than 5 years that won't receive patches.
